]> git.proxmox.com Git - mirror_ubuntu-bionic-kernel.git/commit - arch/x86/kvm/vmx.c
projects / mirror_ubuntu-bionic-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4b12b68) | patch
KVM: nVMX: Don't emulate instructions in guest mode
authorPaolo Bonzini <pbonzini@redhat.com>
Thu, 27 Feb 2020 18:51:00 +0000 (19:51 +0100)
committerKleber Sacilotto de Souza <kleber.souza@canonical.com>
Fri, 28 Feb 2020 10:42:52 +0000 (11:42 +0100)
commit7c111381fa67a574bd3514cb9e3e07fda0a111f8
treeb5ebcade99876dbfbaabdde5e6d26e4e5082b9d5tree
parent4b12b681ee980b2afd91241ce5f85ec9e11fab70commit | diff
KVM: nVMX: Don't emulate instructions in guest mode

CVE-2020-2732

[ Upstream commit 07721feee46b4b248402133228235318199b05ec ]

vmx_check_intercept is not yet fully implemented. To avoid emulating
instructions disallowed by the L1 hypervisor, refuse to emulate
instructions by default.

Cc: stable@vger.kernel.org
[Made commit, added commit msg - Oliver]
Signed-off-by: Oliver Upton <oupton@google.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
Signed-off-by: Thadeu Lima de Souza Cascardo <cascardo@canonical.com>
Acked-by: Benjamin M Romer <benjamin.romer@canonical.com>
Acked-by: Khalid Elmously <khalid.elmously@canonical.com>
Signed-off-by: Kleber Sacilotto de Souza <kleber.souza@canonical.com>
arch/x86/kvm/vmx.c diff | blob | blame | history
ubuntu-bionic-kernel mirror