ACK: [PATCH 0/2][SRU][D] CVE-2019-3887 - Nested KVM host kernel DoS
Colin Ian King
colin.king at canonical.com
Thu Apr 18 09:37:52 UTC 2019
On 18/04/2019 08:33, Tyler Hicks wrote:
> https://people.canonical.com/~ubuntu-security/cve/?cve=CVE-2019-3887
>
> A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific
> Rregister(MSR) access with nested(=1) virtualization enabled. In that, L1
> guest could access L0's APIC register values via L2 guest, when 'virtualize
> x2APIC mode' is enabled. A guest could use this flaw to potentially crash the
> host kernel resulting in DoS issue.
>
> Clean cherry picks. Build logs are clean. Smoke tested by booting an L2 nested
> guest.
>
> Tyler
>
> Marc Orr (2):
> KVM: x86: nVMX: close leak of L0's x2APIC MSRs (CVE-2019-3887)
> KVM: x86: nVMX: fix x2APIC VTPR read intercept
>
> arch/x86/kvm/vmx/nested.c | 74 ++++++++++++++++++++++++++++-------------------
> 1 file changed, 45 insertions(+), 29 deletions(-)
>
Acked-by: Colin Ian King <colin.king at canonical.com>
More information about the kernel-team
mailing list