projects / cascardo / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 54a2055) | patch
KVM: svm: unconditionally intercept #DB
authorPaolo Bonzini <pbonzini@redhat.com>
Tue, 10 Nov 2015 08:14:39 +0000 (09:14 +0100)
committerPaolo Bonzini <pbonzini@redhat.com>
Tue, 10 Nov 2015 11:06:24 +0000 (12:06 +0100)
commitcbdb967af3d54993f5814f1cee0ed311a055377d
treeb5774c71fc96cb10560267ca47655abde5ceb401tree | snapshot
parent54a20552e1eae07aa240fa370a0293e006b5faedcommit | diff
KVM: svm: unconditionally intercept #DB

This is needed to avoid the possibility that the guest triggers
an infinite stream of #DB exceptions (CVE-2015-8104).

VMX is not affected: because it does not save DR6 in the VMCS,
it already intercepts #DB unconditionally.

Reported-by: Jan Beulich <jbeulich@suse.com>
Cc: stable@vger.kernel.org
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
arch/x86/kvm/svm.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.