active/CVE-2019-kvm-guest-xcr0


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21

Description: KVM guest's XCR0 is used in host after MCE
References:
Notes:
 bwh> Branches before 4.14 should probably apply commit b060ca3b2e9e
 bwh> "kvm: vmx: Handle VMLAUNCH/VMRESUME failure properly" first, if
 bwh> only to avoid conflicts.  But this in turn needs further fixes.
 carnil> In a821bab2d1ee ("KVM: VMX: Move VMX specific files to a "vmx"
 carnil> subdirectory") in 5.0-rc1 file arch/x86/kvm/vmx.c was moved to
 carnil> subdirectory arch/x86/kvm/vmx/vmx.c so backport to 4.19 and
 carnil> older need to account for that.
Bugs:
upstream: released  (5.1-rc6) [1811d979c71621aafc7b879477202d286f7e863b]
5.10-upstream-stable: N/A "Fixed before branch point"
4.19-upstream-stable: released (4.19.73) [7a74d806bdaa4718b96577068fe86fcdb91436e1]
4.9-upstream-stable: needed
3.16-upstream-stable: ignored "EOL"
sid: released (5.2.6-1)
5.10-bullseye-security: N/A "Fixed before branching point"
4.19-buster-security: released (4.19.87-1)
4.9-stretch-security: needed
3.16-jessie-security: ignored "EOL"