Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / mainline / linux / cbdb967af3d54993f5814f1cee0ed311a055377d
commitcbdb967af3d54993f5814f1cee0ed311a055377d[log] [tgz]
authorPaolo Bonzini <pbonzini@redhat.com>Tue Nov 10 09:14:39 2015 +0100
committerPaolo Bonzini <pbonzini@redhat.com>Tue Nov 10 12:06:24 2015 +0100
treeb5774c71fc96cb10560267ca47655abde5ceb401
parent54a20552e1eae07aa240fa370a0293e006b5faed [diff]
KVM: svm: unconditionally intercept #DB

This is needed to avoid the possibility that the guest triggers
an infinite stream of #DB exceptions (CVE-2015-8104).

VMX is not affected: because it does not save DR6 in the VMCS,
it already intercepts #DB unconditionally.

Reported-by: Jan Beulich <jbeulich@suse.com>
Cc: stable@vger.kernel.org
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
1 file changed
tree: b5774c71fc96cb10560267ca47655abde5ceb401
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .get_maintainer.ignore
  24. .gitignore
  25. .mailmap
  26. COPYING
  27. CREDITS
  28. Kbuild
  29. Kconfig
  30. MAINTAINERS
  31. Makefile
  32. README
  33. REPORTING-BUGS