You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 38261
About this tag
CVE-2025-38261 is a Linux kernel vulnerability affecting the RISC-V architecture, where the kernel fails to properly save and restore the supervisor user-memory access flag (SR_SUM) during context switches under heavy stress. This issue was discovered during stress testing and is considered narrow in scope. Microsoft's public CVE entry attests that the Azure Linux distribution includes the affected code, making it subject to remediation. Microsoft has stated it will update this attestation if additional Microsoft products are later found to contain the same library. The tag covers discussions about this specific vulnerability, its impact on RISC-V systems, and Microsoft's attestation process for affected products.
The Linux kernel bug tracked as CVE-2025-38261 is a narrow but important RISC‑V architecture issue that showed up during heavy stress testing: the kernel could fail to save and restore the RISC‑V supervisor user‑memory access flag (SR_SUM) across context switches. Microsoft’s public CVE entry...