CVE-2021-47112
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
x86/kvm: Teardown PV features on boot CPU as well
Various PV features (Async PF, PV EOI, steal time) work through memory shared with hypervisor and when we restore from hibernation we must properly teardown all these features to make sure hypervisor doesn't write to stale locations after we jump to the previously hibernated kernel (which can try to place anything there). For secondary CPUs the job is already done by kvm_cpu_down_prepare(), register syscore ops to do the same for boot CPU.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | fd10cde9294f73eeccbc16f3fec1ae6cde7b800c < 7620a669111b52f224d006dea9e1e688e2d62c54 | affected |
| Linux | Linux | fd10cde9294f73eeccbc16f3fec1ae6cde7b800c < 38b858da1c58ad46519a257764e059e663b59ff2 | affected |
| Linux | Linux | fd10cde9294f73eeccbc16f3fec1ae6cde7b800c < d1629b5b925de9b27979e929dae7fcb766daf6b6 | affected |
| Linux | Linux | fd10cde9294f73eeccbc16f3fec1ae6cde7b800c < 8b79feffeca28c5459458fe78676b081e87c93a4 | affected |
| Linux | Linux | 2.6.38 | affected |
| Linux | Linux | 0 < 2.6.38 | unaffected |
| Linux | Linux | 5.4.125 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.43 <= 5.10.* | unaffected |
| Linux | Linux | 5.12.10 <= 5.12.* | unaffected |
| Linux | Linux | 5.13 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/7620a669111b52f224d006dea9e1e688e2d62c54
- https://git.kernel.org/stable/c/38b858da1c58ad46519a257764e059e663b59ff2
- https://git.kernel.org/stable/c/d1629b5b925de9b27979e929dae7fcb766daf6b6
- https://git.kernel.org/stable/c/8b79feffeca28c5459458fe78676b081e87c93a4
References
- https://git.kernel.org/stable/c/7620a669111b52f224d006dea9e1e688e2d62c54
- https://git.kernel.org/stable/c/38b858da1c58ad46519a257764e059e663b59ff2
- https://git.kernel.org/stable/c/d1629b5b925de9b27979e929dae7fcb766daf6b6
- https://git.kernel.org/stable/c/8b79feffeca28c5459458fe78676b081e87c93a4
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.