CVE-2025-46723: OpenVM allows the byte decomposition of pc in AUIPC chip to overflow
The fix to https://cantina.xyz/code/c486d600-bed0-4fc6-aed1-de759fd29fa2/findings/21 has a typo that still results in the highest limb of pc being range checked to 8-bits instead of 6-bits.
References
- cantina.xyz/code/c486d600-bed0-4fc6-aed1-de759fd29fa2/findings/21
- github.com/advisories/GHSA-jf2r-x3j4-23m7
- github.com/openvm-org/openvm
- github.com/openvm-org/openvm/blob/0f94c8a3dfa7536c1231465d1bdee5fc607a5993/extensions/rv32im/circuit/src/auipc/core.rs
- github.com/openvm-org/openvm/commit/68da4b50c033da5603517064aa0a08e1bbf70a01
- github.com/openvm-org/openvm/releases/tag/v1.1.0
- github.com/openvm-org/openvm/security/advisories/GHSA-jf2r-x3j4-23m7
- nvd.nist.gov/vuln/detail/CVE-2025-46723
Code Behaviors & Features
Detect and mitigate CVE-2025-46723 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →