[LTP] [PATCH 5/5] Add test for CVE 2021-3653
Petr Vorel
pvorel@suse.cz
Tue Apr 25 14:48:34 CEST 2023
Hi Martin,
> +/*\
> + * CVE 2021-3653
> + *
> + * Check that KVM either blocks enabling virtual interrupt controller (AVIC)
> + * in nested VMs or correctly sets up the required memory address translation.
> + * If AVIC is enabled without address translation in the host kernel,
> + * the nested VM will be able to read and write an arbitraty physical memory
> + * page specified by the parent VM. Unauthorized memory access fixed in:
> + *
> + * commit 0f923e07124df069ba68d8bb12324398f4b6b709
> + * Author: Maxim Levitsky <mlevitsk@redhat.com>
> + * Date: Thu Jul 15 01:56:24 2021 +0300
> + *
> + * KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653)
very nit: I'd prefer just:
0f923e07124d ("KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653)")
which looks better in docparse generated output.
Kind regards,
Petr
More information about the ltp
mailing list