active/CVE-2021-3656


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15

Description: KVM: nSVM: always intercept VMLOAD/VMSAVE when nested
References:
 https://git.kernel.org/pub/scm/virt/kvm/kvm.git/commit/?id=c7dfa4009965a9b2d7b329ee970eb8da0d32f0bc
Notes:
 carnil> Issue introduced in 4.13-rc1 with 89c8a4984fc9 ("KVM: SVM:
 carnil> Enable Virtual VMLOAD VMSAVE feature").
Bugs:
upstream: released (5.14-rc7) [c7dfa4009965a9b2d7b329ee970eb8da0d32f0bc]
5.10-upstream-stable: released (5.10.60) [3dc5666baf2a135f250e4101d41d5959ac2c2e1f]
4.19-upstream-stable: released (4.19.205) [119d547cbf7c055ba8100309ad71910478092f24]
4.9-upstream-stable: N/A "Vulnerable code not present"
sid: released (5.14.6-1)
5.10-bullseye-security: released (5.10.46-5) [bugfix/x86/KVM-nSVM-always-intercept-VMLOAD-VMSAVE-when-nested-.patch]
4.19-buster-security: needed
4.9-stretch-security: N/A "Vulnerable code not present"