KVM: x86: work around leak of uninitialized stack contents (CVE-2019-7222) - bcachefs.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Paolo Bonzini <pbonzini@redhat.com>	2019-01-29 18:41:16 +0100
committer	Ben Hutchings <ben@decadent.org.uk>	2019-03-25 17:32:36 +0000
commit	234a2dee1b06502face184e241e03582d7946f80 (patch)
tree	830af99e05f481541903885ff014477bc8f9063b /virt/kvm/Kconfig
parent	69c7b3bb99c621f44fb46c20ccef737e86e1c5c8 (diff)

KVM: x86: work around leak of uninitialized stack contents (CVE-2019-7222)

commit 353c0956a618a07ba4bbe7ad00ff29fe70e8412a upstream. Bugzilla: 1671930 Emulation of certain instructions (VMXON, VMCLEAR, VMPTRLD, VMWRITE with memory operand, INVEPT, INVVPID) can incorrectly inject a page fault when passed an operand that points to an MMIO address. The page fault will use uninitialized kernel stack memory as the CR2 and error code. The right behavior would be to abort the VM with a KVM_EXIT_INTERNAL_ERROR exit to userspace; however, it is not an easy fix, so for now just ensure that the error code and CR2 are zero. Embargoed until Feb 7th 2019. Reported-by: Felix Wilhelm <fwilhelm@google.com> Signed-off-by: Paolo Bonzini <pbonzini@redhat.com> Signed-off-by: Ben Hutchings <ben@decadent.org.uk>

Diffstat (limited to 'virt/kvm/Kconfig')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: