Update status for CVE-2021-3653 and CVE-2021-3656

author: Salvatore Bonaccorso <carnil@debian.org> 2021-08-16 22:06:01 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-08-16 22:06:01 +0200
commit: 986749748a6d15ed696f624560f2463ecdcefd31 (patch)
tree: 83f2c976a11038fda92e2d20b3bc1c5018bfec36
parent: f8eee1adb710b3e0f34c1de31ea191262147a692 (diff)
2 files changed, 4 insertions, 2 deletions
diff --git a/active/CVE-2021-3653 b/active/CVE-2021-3653
index 55f94ee5..05efba87 100644
--- a/active/CVE-2021-3653
+++ b/active/CVE-2021-3653
@@ -1,8 +1,9 @@
 Description: KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl
 References:
+ https://git.kernel.org/pub/scm/virt/kvm/kvm.git/commit/?id=0f923e07124df069ba68d8bb12324398f4b6b709
 Notes:
 Bugs:
-upstream: needed
+upstream: pending [0f923e07124df069ba68d8bb12324398f4b6b709]
 5.10-upstream-stable: needed
 4.19-upstream-stable: needed
 4.9-upstream-stable: needed
diff --git a/active/CVE-2021-3656 b/active/CVE-2021-3656
index 117b2fcc..534b1e76 100644
--- a/active/CVE-2021-3656
+++ b/active/CVE-2021-3656
@@ -1,10 +1,11 @@
 Description: KVM: nSVM: always intercept VMLOAD/VMSAVE when nested
 References:
+ https://git.kernel.org/pub/scm/virt/kvm/kvm.git/commit/?id=c7dfa4009965a9b2d7b329ee970eb8da0d32f0bc
 Notes:
  carnil> Issue introduced in 4.13-rc1 with 89c8a4984fc9 ("KVM: SVM:
  carnil> Enable Virtual VMLOAD VMSAVE feature").
 Bugs:
-upstream: needed
+upstream: pending [c7dfa4009965a9b2d7b329ee970eb8da0d32f0bc]
 5.10-upstream-stable: needed
 4.19-upstream-stable: needed
 4.9-upstream-stable: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2021-08-16 22:06:01 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-08-16 22:06:01 +0200
commit	986749748a6d15ed696f624560f2463ecdcefd31 (patch)
tree	83f2c976a11038fda92e2d20b3bc1c5018bfec36
parent	f8eee1adb710b3e0f34c1de31ea191262147a692 (diff)