ACK: [UBUNTU Focal, Jammy, Kinetic, Lunar, OEM-5.14, OEM-5.17, OEM-6.0 0/1] CVE-2022-2196

[Tim Gardner]

On 2/10/23 11:21 AM, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> An L2 guest could do an spectre-v2 attack on an L1 guest if that guest assumes
> IBRS or eIBRS can be used to isolate between them, while it cannot. L0 needs to
> issue an IBPB in these cases.
> 
> [Potential impact]
> Systems using nested guests might have a performance impact.
> 
> Jim Mattson (1):
>    KVM: VMX: Execute IBPB on emulated VM-exit when guest has IBRS
> 
>   arch/x86/kvm/vmx/nested.c | 11 +++++++++++
>   arch/x86/kvm/vmx/vmx.c    |  6 ++++--
>   2 files changed, 15 insertions(+), 2 deletions(-)
> 
Acked-by: Tim Gardner <tim.gardner at canonical.com>
-- 
-----------
Tim Gardner
Canonical, Inc