Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / mainline / linux / faf6b755629627f19feafa75b32e81cd7738f12d
commitfaf6b755629627f19feafa75b32e81cd7738f12d[log] [tgz]
authorMaxim Levitsky <mlevitsk@redhat.com>Tue Sep 14 18:48:16 2021 +0300
committerPaolo Bonzini <pbonzini@redhat.com>Thu Sep 23 10:06:46 2021 -0400
treedb74db774aa57c6abeec1340a9d1806de8da51b7
parentd1cba6c9223751f580dcd97501f513a8a9bf88bc [diff]
KVM: x86: nSVM: don't copy virt_ext from vmcb12

These field correspond to features that we don't expose yet to L2

While currently there are no CVE worthy features in this field,
if AMD adds more features to this field, that could allow guest
escapes similar to CVE-2021-3653 and CVE-2021-3656.

Signed-off-by: Maxim Levitsky <mlevitsk@redhat.com>
Message-Id: <20210914154825.104886-6-mlevitsk@redhat.com>
Cc: stable@vger.kernel.org
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
1 file changed
tree: db74db774aa57c6abeec1340a9d1806de8da51b7
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. LICENSES/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .clang-format
  24. .cocciconfig
  25. .get_maintainer.ignore
  26. .gitattributes
  27. .gitignore
  28. .mailmap
  29. COPYING
  30. CREDITS
  31. Kbuild
  32. Kconfig
  33. MAINTAINERS
  34. Makefile
  35. README