[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] CVE request: kvm: check cpl before emulating
From: Mark J Cox <mjc () redhat ! com>
Date: 2009-10-29 8:56:17
Message-ID: 0910290855540.20989 () mjc ! redhat ! com
[Download RAW message or body]
On Thu, 29 Oct 2009, Eugene Teo wrote:
> Quote from the upstream commit:
> "Debug registers may only be accessed from cpl 0. Unfortunately, vmx will
> code to emulate the instruction even though it was issued from guest
> userspace, possibly leading to an unexpected trap later."
>
> Introduced in v2.6.30-rc1; Fixed in v2.6.32-rc1.
>
> http://bugzilla.redhat.com/531660
> http://git.kernel.org/linus/0a79b009525b160081d75cef5dbf45817956acf2
Please use CVE-2009-3722
Mark
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic