CVE-2026-29649

Gravedad:

Pendiente de análisis

Tipo:

No Disponible / Otro tipo

Fecha de publicación:

20/04/2026

Última modificación:

20/04/2026

Descripción

*** Pendiente de traducción *** NEMU contains an implementation flaw in its RISC-V Hypervisor CSR handling where henvcfg[7:4] (CBIE/CBCFE/CBZE-related fields) is incorrectly masked/updated based on menvcfg[7:4], so a machine-mode write to menvcfg can implicitly modify the hypervisor&#39;s environment configuration. This can lead to incorrect enforcement of virtualization configuration and may cause unexpected traps or denial of service when executing cache-block management instructions in virtualized contexts (V=1).

Impacto

Referencias a soluciones, herramientas e información

https://docs.riscv.org/reference/isa/priv/hypervisor.html
https://docs.riscv.org/reference/isa/priv/machine.html
https://github.com/OpenXiangShan/NEMU/issues/681
https://github.com/OpenXiangShan/NEMU/pull/689