[kernel-sec-discuss] r5220 - active
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Apr 25 04:26:19 UTC 2017
Author: carnil
Date: 2017-04-25 04:26:19 +0000 (Tue, 25 Apr 2017)
New Revision: 5220
Added:
active/CVE-2017-8106
Log:
Add CVE-2017-8106
Added: active/CVE-2017-8106
===================================================================
--- active/CVE-2017-8106 (rev 0)
+++ active/CVE-2017-8106 2017-04-25 04:26:19 UTC (rev 5220)
@@ -0,0 +1,17 @@
+Description: nVMX: Check current_vmcs12 before accessing in handle_invept()
+References:
+Notes:
+ carnil> Introduced in bfd0a56b90005f8c8a004baf407ad90045c2b11e (3.12-rc1)
+ carnil> for linux-3.2.y commit 02a988e6e4511b1f6d83525710a12db9c5a45149 (3.2.64)
+ carnil> backports bfd0a56b90005f8c8a004baf407ad90045c2b11e but is quite
+ carnil> reduced.
+Bugs:
+ https://bugzilla.kernel.org/show_bug.cgi?id=195167
+ https://launchpad.net/bugs/1678676
+upstream: released (3.16-rc4) [4b855078601fc422dbac3059f2215e776f49780f]
+4.9-upstream-stable: N/A "Fixed before branch point"
+3.16-upstream-stable: N/A "Fixed before branch point"
+3.2-upstream-stable:
+sid: 3.16.2-1
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security:
More information about the kernel-sec-discuss
mailing list