Description: KVM: SVM: load control fields from VMCB12 before checking them References: https://googleprojectzero.blogspot.com/2021/06/an-epyc-escape-case-study-of-kvm.html Notes: carnil> Commit fixes 2fcf4876ada ("KVM: nSVM: implement on demand carnil> allocation of the nested state") in 5.10-rc1. Bugs: upstream: released (5.12-rc6) [a58d9166a756a0f4a6618e4f593232593d6df134] 5.10-upstream-stable: released (5.10.28) [5f6625f5cd5c593fae05a6ce22b406166bc796b8] 4.19-upstream-stable: N/A "Vulnerable code introduced later" 4.9-upstream-stable: N/A "Vulnerable code introduced later" sid: released (5.10.28-1) 4.19-buster-security: N/A "Vulnerable code introduced later" 4.9-stretch-security: N/A "Vulnerable code introduced later"