[0/3,SRU,X] Multiple KVM vulnerabilities
mbox series

Message ID 1551095347-1071-1-git-send-email-tyhicks@canonical.com
Headers show
Series
  • Multiple KVM vulnerabilities
Related show

Message

Tyler Hicks Feb. 25, 2019, 11:49 a.m. UTC
* https://people.canonical.com/~ubuntu-security/cve/?cve=CVE-2019-6974
* https://people.canonical.com/~ubuntu-security/cve/?cve=CVE-2019-7221
* https://people.canonical.com/~ubuntu-security/cve/?cve=CVE-2019-7222

Successfully ran the ubuntu_kvm_smoke_test and did manual verification in a
nested KVM environment.

Tyler

Jann Horn (1):
  kvm: fix kvm_ioctl_create_device() reference counting (CVE-2019-6974)

Paolo Bonzini (1):
  KVM: x86: work around leak of uninitialized stack contents
    (CVE-2019-7222)

Peter Shier (1):
  KVM: nVMX: unconditionally cancel preemption timer in free_nested
    (CVE-2019-7221)

 arch/x86/kvm/vmx.c  | 1 +
 arch/x86/kvm/x86.c  | 7 +++++++
 virt/kvm/kvm_main.c | 3 ++-
 3 files changed, 10 insertions(+), 1 deletion(-)

Comments

Kleber Souza Feb. 25, 2019, 1:01 p.m. UTC | #1
On 2/25/19 12:49 PM, Tyler Hicks wrote:
> * https://people.canonical.com/~ubuntu-security/cve/?cve=CVE-2019-6974
> * https://people.canonical.com/~ubuntu-security/cve/?cve=CVE-2019-7221
> * https://people.canonical.com/~ubuntu-security/cve/?cve=CVE-2019-7222
>
> Successfully ran the ubuntu_kvm_smoke_test and did manual verification in a
> nested KVM environment.
>
> Tyler
>
> Jann Horn (1):
>   kvm: fix kvm_ioctl_create_device() reference counting (CVE-2019-6974)
>
> Paolo Bonzini (1):
>   KVM: x86: work around leak of uninitialized stack contents
>     (CVE-2019-7222)
>
> Peter Shier (1):
>   KVM: nVMX: unconditionally cancel preemption timer in free_nested
>     (CVE-2019-7221)
>
>  arch/x86/kvm/vmx.c  | 1 +
>  arch/x86/kvm/x86.c  | 7 +++++++
>  virt/kvm/kvm_main.c | 3 ++-
>  3 files changed, 10 insertions(+), 1 deletion(-)
>
Acked-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>
Marcelo Henrique Cerri Feb. 27, 2019, 6:09 p.m. UTC | #2
Acked-by: Marcelo Henrique Cerri <marcelo.cerri@canonical.com>
Khaled Elmously Feb. 28, 2019, 11:10 p.m. UTC | #3
On 2019-02-25 11:49:04 , Tyler Hicks wrote:
> * https://people.canonical.com/~ubuntu-security/cve/?cve=CVE-2019-6974
> * https://people.canonical.com/~ubuntu-security/cve/?cve=CVE-2019-7221
> * https://people.canonical.com/~ubuntu-security/cve/?cve=CVE-2019-7222
> 
> Successfully ran the ubuntu_kvm_smoke_test and did manual verification in a
> nested KVM environment.
> 
> Tyler
> 
> Jann Horn (1):
>   kvm: fix kvm_ioctl_create_device() reference counting (CVE-2019-6974)
> 
> Paolo Bonzini (1):
>   KVM: x86: work around leak of uninitialized stack contents
>     (CVE-2019-7222)
> 
> Peter Shier (1):
>   KVM: nVMX: unconditionally cancel preemption timer in free_nested
>     (CVE-2019-7221)
> 
>  arch/x86/kvm/vmx.c  | 1 +
>  arch/x86/kvm/x86.c  | 7 +++++++
>  virt/kvm/kvm_main.c | 3 ++-
>  3 files changed, 10 insertions(+), 1 deletion(-)
> 
> -- 
> 2.7.4
> 
> 
> -- 
> kernel-team mailing list
> kernel-team@lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team