[disco,0/3] Patch for CVE-2019-18660

Message ID	20191128150536.31557-1-benjamin.romer@canonical.com
Headers	show Return-Path: <kernel-team-bounces@lists.ubuntu.com> From: Benjamin M Romer <benjamin.romer@canonical.com> To: kernel-team@lists.ubuntu.com Subject: [disco][PATCH 0/3] Patch for CVE-2019-18660 Date: Thu, 28 Nov 2019 10:05:33 -0500 Message-Id: <20191128150536.31557-1-benjamin.romer@canonical.com> MIME-Version: 1.0 Precedence: list Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: kernel-team-bounces@lists.ubuntu.com Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>
Series	Patch for CVE-2019-18660 \| expand [disco,0/3] Patch for CVE-2019-18660 [disco,1/3] powerpc/64s: support nospectre_v2 cmdline option [disco,2/3] powerpc/book3s64: Fix link stack flush on context switch [disco,3/3] KVM: PPC: Book3S HV: Flush link stack on guest exit to host kernel

Message ID

20191128150536.31557-1-benjamin.romer@canonical.com

Headers

From: Benjamin M Romer <benjamin.romer@canonical.com>
To: kernel-team@lists.ubuntu.com
Subject: [disco][PATCH 0/3] Patch for CVE-2019-18660
Date: Thu, 28 Nov 2019 10:05:33 -0500
Message-Id: <20191128150536.31557-1-benjamin.romer@canonical.com>
MIME-Version: 1.0
Precedence: list
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: kernel-team-bounces@lists.ubuntu.com
Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>

Series

Patch for CVE-2019-18660 | expand

Message

Benjamin M Romer Nov. 28, 2019, 3:05 p.m. UTC

CVE-2019-18660:

The Linux kernel through 5.3.13 on powerpc allows Information Exposure 
because the Spectre-RSB mitigation is not in place for all applicable 
CPUs, aka CID-39e72bf96f58. This is related to 
arch/powerpc/kernel/entry_64.S and arch/powerpc/kernel/security.c.

Christopher M. Riedl (1):
  powerpc/64s: support nospectre_v2 cmdline option

Michael Ellerman (2):
  powerpc/book3s64: Fix link stack flush on context switch
  KVM: PPC: Book3S HV: Flush link stack on guest exit to host kernel

 arch/powerpc/include/asm/asm-prototypes.h    |  3 +
 arch/powerpc/include/asm/security_features.h |  3 +
 arch/powerpc/kernel/entry_64.S               |  6 ++
 arch/powerpc/kernel/security.c               | 74 ++++++++++++++++++--
 arch/powerpc/kvm/book3s_hv_rmhandlers.S      | 30 ++++++++
 5 files changed, 110 insertions(+), 6 deletions(-)

Comments

Stefan Bader Nov. 29, 2019, 11:16 a.m. UTC | #1

On 28.11.19 16:05, Benjamin M Romer wrote:
> CVE-2019-18660:
> 
> The Linux kernel through 5.3.13 on powerpc allows Information Exposure 
> because the Spectre-RSB mitigation is not in place for all applicable 
> CPUs, aka CID-39e72bf96f58. This is related to 
> arch/powerpc/kernel/entry_64.S and arch/powerpc/kernel/security.c.
> 
> Christopher M. Riedl (1):
>   powerpc/64s: support nospectre_v2 cmdline option
> 
> Michael Ellerman (2):
>   powerpc/book3s64: Fix link stack flush on context switch
>   KVM: PPC: Book3S HV: Flush link stack on guest exit to host kernel
> 
>  arch/powerpc/include/asm/asm-prototypes.h    |  3 +
>  arch/powerpc/include/asm/security_features.h |  3 +
>  arch/powerpc/kernel/entry_64.S               |  6 ++
>  arch/powerpc/kernel/security.c               | 74 ++++++++++++++++++--
>  arch/powerpc/kvm/book3s_hv_rmhandlers.S      | 30 ++++++++
>  5 files changed, 110 insertions(+), 6 deletions(-)
> 
Acked-by: Stefan Bader <stefan.bader@canonical.com>

Sultan Alsawaf Nov. 29, 2019, 5:24 p.m. UTC | #2

On Thu, Nov 28, 2019 at 10:05:33AM -0500, Benjamin M Romer wrote:
> CVE-2019-18660:
> 
> The Linux kernel through 5.3.13 on powerpc allows Information Exposure 
> because the Spectre-RSB mitigation is not in place for all applicable 
> CPUs, aka CID-39e72bf96f58. This is related to 
> arch/powerpc/kernel/entry_64.S and arch/powerpc/kernel/security.c.
> 
> Christopher M. Riedl (1):
>   powerpc/64s: support nospectre_v2 cmdline option
> 
> Michael Ellerman (2):
>   powerpc/book3s64: Fix link stack flush on context switch
>   KVM: PPC: Book3S HV: Flush link stack on guest exit to host kernel
> 
>  arch/powerpc/include/asm/asm-prototypes.h    |  3 +
>  arch/powerpc/include/asm/security_features.h |  3 +
>  arch/powerpc/kernel/entry_64.S               |  6 ++
>  arch/powerpc/kernel/security.c               | 74 ++++++++++++++++++--
>  arch/powerpc/kvm/book3s_hv_rmhandlers.S      | 30 ++++++++
>  5 files changed, 110 insertions(+), 6 deletions(-)
> 
> -- 
> 2.20.1
> 
> 
> -- 
> kernel-team mailing list
> kernel-team@lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team

Acked-by: Sultan Alsawaf <sultan.alsawaf@canonical.com>

Khalid Elmously Dec. 2, 2019, 6:38 a.m. UTC | #3

On 2019-11-28 10:05:33 , Benjamin M Romer wrote:
> CVE-2019-18660:
> 
> The Linux kernel through 5.3.13 on powerpc allows Information Exposure 
> because the Spectre-RSB mitigation is not in place for all applicable 
> CPUs, aka CID-39e72bf96f58. This is related to 
> arch/powerpc/kernel/entry_64.S and arch/powerpc/kernel/security.c.
> 
> Christopher M. Riedl (1):
>   powerpc/64s: support nospectre_v2 cmdline option
> 
> Michael Ellerman (2):
>   powerpc/book3s64: Fix link stack flush on context switch
>   KVM: PPC: Book3S HV: Flush link stack on guest exit to host kernel
> 
>  arch/powerpc/include/asm/asm-prototypes.h    |  3 +
>  arch/powerpc/include/asm/security_features.h |  3 +
>  arch/powerpc/kernel/entry_64.S               |  6 ++
>  arch/powerpc/kernel/security.c               | 74 ++++++++++++++++++--
>  arch/powerpc/kvm/book3s_hv_rmhandlers.S      | 30 ++++++++
>  5 files changed, 110 insertions(+), 6 deletions(-)
> 
> -- 
> 2.20.1
> 
> 
> -- 
> kernel-team mailing list
> kernel-team@lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team