Skip to main content

Browse the archive

https://github.com/raspberrypi/linux
24 June 2024, 18:43:14 UTC
Revision 3dc5666baf2a135f250e4101d41d5959ac2c2e1f authored by Maxim Levitsky on 19 July 2021, 13:05:00 UTC, committed by Greg Kroah-Hartman on 18 August 2021, 06:59:18 UTC 
KVM: nSVM: always intercept VMLOAD/VMSAVE when nested (CVE-2021-3656)
 
commit c7dfa4009965a9b2d7b329ee970eb8da0d32f0bc upstream.

If L1 disables VMLOAD/VMSAVE intercepts, and doesn't enable
Virtual VMLOAD/VMSAVE (currently not supported for the nested hypervisor),
then VMLOAD/VMSAVE must operate on the L1 physical memory, which is only
possible by making L0 intercept these instructions.

Failure to do so allowed the nested guest to run VMLOAD/VMSAVE unintercepted,
and thus read/write portions of the host physical memory.

Fixes: 89c8a4984fc9 ("KVM: SVM: Enable Virtual VMLOAD VMSAVE feature")

Suggested-by: Paolo Bonzini <pbonzini@redhat.com>
Signed-off-by: Maxim Levitsky <mlevitsk@redhat.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
1 parent c0883f6
History
Tip revision: 3dc5666baf2a135f250e4101d41d5959ac2c2e1f authored by Maxim Levitsky on 19 July 2021, 13:05:00 UTC
KVM: nSVM: always intercept VMLOAD/VMSAVE when nested (CVE-2021-3656)
Tip revision: 3dc5666
File Mode Size
Documentation
LICENSES
arch
block
certs
crypto
drivers
fs
include
init
ipc
kernel
lib
mm
net
samples
scripts
security
sound
tools
usr
virt
.clang-format -rw-r--r-- 16.3 KB
.cocciconfig -rw-r--r-- 59 bytes
.get_maintainer.ignore -rw-r--r-- 71 bytes
.gitattributes -rw-r--r-- 62 bytes
.gitignore -rw-r--r-- 1.9 KB
.mailmap -rw-r--r-- 17.8 KB
COPYING -rw-r--r-- 496 bytes
CREDITS -rw-r--r-- 98.1 KB
Kbuild -rw-r--r-- 1.3 KB
Kconfig -rw-r--r-- 555 bytes
MAINTAINERS -rw-r--r-- 563.2 KB
Makefile -rw-r--r-- 63.7 KB
README -rw-r--r-- 727 bytes

README

back to top