blob: 7378b6e8dc525234493ede766f262a473352deaa (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
|
Description: KVM: x86/mmu: fix NULL pointer dereference on guest INVPCID
References:
https://www.openwall.com/lists/oss-security/2022/05/25/2
Notes:
carnil> Fixed in 5.17.12 for 5.17.y.
bwh> This appears to have been introduced in 5.8 by commit 5efac0741ce2
bwh> "KVM: x86: introduce kvm_mmu_invalidate_gva", as before that
bwh> the invlpg function pointer would not be set to NULL when paging
bwh> was disabled.
Bugs:
upstream: released (5.18) [9f46c187e2e680ecd9de7983e4d081c3391acc76]
5.10-upstream-stable: released (5.10.119) [9b4aa0d80b18b9d19e62dd47d22e274ce92cdc95]
4.19-upstream-stable: N/A "Vulnerability introduced later"
4.9-upstream-stable: N/A "Vulnerability introduced later"
sid: released (5.17.11-1) [bugfix/x86/KVM-x86-mmu-fix-NULL-pointer-dereference-on-guest-IN.patch]
5.10-bullseye-security: released (5.10.120-1)
4.19-buster-security: N/A "Vulnerability introduced later"
4.9-stretch-security: N/A "Vulnerability introduced later"
|
