Описание
ELSA-2022-9265: Unbreakable Enterprise kernel-container security update (IMPORTANT)
[5.4.17-2136.305.5.5]
- KVM: x86/mmu: do compare-and-exchange of gPTE via the user address (Paolo Bonzini) [Orabug: 34034594] {CVE-2022-1158}
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
kernel-uek-container
5.4.17-2136.305.5.5.el7
kernel-uek-container-debug
5.4.17-2136.305.5.5.el7
Oracle Linux 8
Oracle Linux x86_64
kernel-uek-container
5.4.17-2136.305.5.5.el8
kernel-uek-container-debug
5.4.17-2136.305.5.5.el8
Связанные CVE
Связанные уязвимости
A flaw was found in KVM. When updating a guest's page table entry, vm_pgoff was improperly used as the offset to get the page's pfn. As vaddr and vm_pgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host to write outside the userspace region and potentially corrupt the kernel, resulting in a denial of service condition.
A flaw was found in KVM. When updating a guest's page table entry, vm_pgoff was improperly used as the offset to get the page's pfn. As vaddr and vm_pgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host to write outside the userspace region and potentially corrupt the kernel, resulting in a denial of service condition.
A flaw was found in KVM. When updating a guest's page table entry, vm_pgoff was improperly used as the offset to get the page's pfn. As vaddr and vm_pgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host to write outside the userspace region and potentially corrupt the kernel, resulting in a denial of service condition.
A flaw was found in KVM. When updating a guest's page table entry, vm_ ...