CVE-2025-38433 | Linux Kernel up to 6.15.4/6.16-rc3 riscv __runtime_fixup_32 addi_insn_mask random values

A vulnerability was found in Linux Kernel up to 6.15.4/6.16-rc3. It has been rated as problematic. Affected by this issue is the function __runtime_fixup_32 of the component riscv. The manipulation of the argument addi_insn_mask leads to insufficiently random values.

This vulnerability is handled as CVE-2025-38433. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More