KVM: x86: Use __try_cmpxchg_user() to update guest PTE A/D bits

...

DEBIAN-CVE-2022-49562

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Use trycmpxchguser to update guest PTE A/D bits Use the recently introduced trycmpxchguser to update guest PTE A/D bits instead of mapping the PTE into kernel address space. The VMPFNMAP path is broken as it assumes tha...

GSD-2022-1005860 KVM: Don't set Accessed/Dirty bits for ZERO_PAGE

KVM: Don't set Accessed/Dirty bits for ZEROPAGE This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.137 by commit...

GSD-2022-1005605 KVM: Don't set Accessed/Dirty bits for ZERO_PAGE

KVM: Don't set Accessed/Dirty bits for ZEROPAGE This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...

PT-2022-34118 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.137 Description: The issue concerns the KVM and the handling of Accessed/Dirty bits for ZERO PAGE. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...

PT-2022-33863 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue concerns the KVM and the handling of Accessed/Dirty bits for the ZERO PAGE. The actual impact and potential for attack have not been proven yet. Recommendations: For versions prio...