projects / linux-2.6-microblaze.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d1cba6c) | patch
KVM: x86: nSVM: don't copy virt_ext from vmcb12
authorMaxim Levitsky <mlevitsk@redhat.com>
Tue, 14 Sep 2021 15:48:16 +0000 (18:48 +0300)
committerPaolo Bonzini <pbonzini@redhat.com>
Thu, 23 Sep 2021 14:06:46 +0000 (10:06 -0400)
commitfaf6b755629627f19feafa75b32e81cd7738f12d
treedb74db774aa57c6abeec1340a9d1806de8da51b7tree
parentd1cba6c9223751f580dcd97501f513a8a9bf88bccommit | diff
KVM: x86: nSVM: don't copy virt_ext from vmcb12

These field correspond to features that we don't expose yet to L2

While currently there are no CVE worthy features in this field,
if AMD adds more features to this field, that could allow guest
escapes similar to CVE-2021-3653 and CVE-2021-3656.

Signed-off-by: Maxim Levitsky <mlevitsk@redhat.com>
Message-Id: <20210914154825.104886-6-mlevitsk@redhat.com>
Cc: stable@vger.kernel.org
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
arch/x86/kvm/svm/nested.c diff | blob | history
MicroBlaze GIT Repository