CVE-2024-46707 KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Make ICCSGIEL1 undef in the absence of a vGICv3 On a system with a GICv3, if a guest hasn't been configured with GICv3 and that the host is not capable of GICv2 emulation, a write to any of the ICCSGIEL1 registers is...

arm: vgic: Out-of-bound access when sending SGIs

ISSUE DESCRIPTION ARM guests can send SGI i.e. IPI targeting a list of vCPUs using the MMIO register GICDSGIR GICv2 or System Register ICCSGI1R GICv3. However, the emulation code does not sanitize the list and will directly access an array without checking whether the array index is within bounds...

CVE-2015-0268

The vgicv2tosgi function in arch/arm/vgic-v2.c in Xen 4.5.x, when running on ARM hardware with general interrupt controller GIC version 2, allows local guest users to cause a denial of service host crash by writing an invalid value to the GICD.SGIR register...

CVE-2015-0268

CVE-2015-0268 affects Xen 4.5.x on ARM with GIC version 2. The vulnerable function is vgic_v2_to_sgi in arch/arm/vgic-v2.c; a guest writing an invalid value to the GICD.SGIR register can trigger a host denial of service (host crash). Several connected sources corroborate the impact as a local-gue...