[PATCH 0/1][OEM-5.10] CVE-2021-29657: SVM VMCB race between time of check and time of use
Tim Gardner
tim.gardner at canonical.com
Thu Apr 8 19:36:48 UTC 2021
Focal:linux-oem-5.10 is the only kernel that does not have this patch.
Introduced by 2fcf4876ada8a293d3b92a1033b8b990a7c613d3 v5.10
Fixed by a58d9166a756a0f4a6618e4f593232593d6df134 v5.12
[SRU Justification]
KVM: SVM: load control fields from VMCB12 before checking them
[Test Plan]
Launch virtual instances
[Where problems could occur]
Entering guest mode could fail if the read race before setting vmcb fields persists.
[Other Info]
Released in stable kernels:
linux-5.10.y
linux-5.11.y
More information about the kernel-team
mailing list