PT-2022-22264 · Cva6+1 · Cva6+1
Phantom1003
·
Published
2022-07-18
·
Updated
2023-05-26
·
CVE-2022-34641
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
CVA6 version d315ddd0f1be27c1b3f27eb0b8daf471a952299a
RISCV-Boom version ad64c5419151e5e886daee7084d8399713b46b4b
Description
The issue arises from the implementation of the incorrect exception type when a PMP violation occurs during address translation. This is a result of the commits made to CVA6 and RISCV-Boom.
Recommendations
For CVA6 version d315ddd0f1be27c1b3f27eb0b8daf471a952299a, consider updating to a version that correctly handles PMP violations.
For RISCV-Boom version ad64c5419151e5e886daee7084d8399713b46b4b, consider updating to a version that correctly handles PMP violations.
As a temporary workaround, consider disabling the address translation functionality until a patch is available.
Exploit
Fix
Improper Handling of Exceptional Conditions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cva6
Riscv-Boom