CVE-2026-29643

Published: Apr 20, 2026

Modified: Apr 21, 2026

PUBLISHED

Description

XiangShan (Open-source high-performance RISC-V processor) commit edb1dfaf7d290ae99724594507dc46c2c2125384 (2024-11-28) contains an improper exceptional-condition handling flaw in its CSR subsystem (NewCSR). On affected versions, certain sequences of CSR operations targeting non-existent/custom CSR addresses may trigger an illegal-instruction exception but fail to reliably transfer control to the configured trap handler (mtvec), causing control-flow disruption and potentially leaving the core in a hung or unrecoverable state. This can be exploited by a local attacker able to execute code on the processor to cause a denial of service and potentially inconsistent architectural state.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/OpenXiangShan/XiangShan/issues/3959

https://github.com/OpenXiangShan/XiangShan/pull/3966

https://docs.riscv.org/reference/isa/priv/priv-csrs.html

https://docs.riscv.org/reference/isa/priv/machine.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-29643

Description

Affected Products

References