[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE request: kvm: check cpl before emulating
From:       Mark J Cox <mjc () redhat ! com>
Date:       2009-10-29 8:56:17
Message-ID: 0910290855540.20989 () mjc ! redhat ! com
[Download RAW message or body]

On Thu, 29 Oct 2009, Eugene Teo wrote:
> Quote from the upstream commit:
> "Debug registers may only be accessed from cpl 0.  Unfortunately, vmx will 
> code to emulate the instruction even though it was issued from guest 
> userspace, possibly leading to an unexpected trap later."
>
> Introduced in v2.6.30-rc1; Fixed in v2.6.32-rc1.
>
> http://bugzilla.redhat.com/531660
> http://git.kernel.org/linus/0a79b009525b160081d75cef5dbf45817956acf2

Please use CVE-2009-3722

Mark
[prev in list] [next in list] [prev in thread] [next in thread]