| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <173946974570.2974684.11799250388121421778.b4-ty@kernel.org>
Date: Thu, 13 Feb 2025 18:02:35 +0000
From: Marc Zyngier <maz@...nel.org>
To: Oliver Upton <oliver.upton@...ux.dev>,
Joey Gouly <joey.gouly@....com>,
Suzuki K Poulose <suzuki.poulose@....com>,
Zenghui Yu <yuzenghui@...wei.com>,
Catalin Marinas <catalin.marinas@....com>,
Will Deacon <will@...nel.org>,
Quentin Perret <qperret@...gle.com>
Cc: Keir Fraser <keirf@...gle.com>,
Ben Simner <ben.simner@...cam.ac.uk>,
linux-arm-kernel@...ts.infradead.org,
kvmarm@...ts.linux.dev,
linux-kernel@...r.kernel.org
Subject: Re: [PATCH] KVM: arm64: Fix alignment of kvm_hyp_memcache allocations
On Thu, 13 Feb 2025 15:36:14 +0000, Quentin Perret wrote:
> When allocating guest stage-2 page-table pages at EL2, pKVM can consume
> pages from the host-provided kvm_hyp_memcache. As pgtable.c expects
> zeroed pages, guest_s2_zalloc_page() actively implements this zeroing
> with a PAGE_SIZE memset. Unfortunately, we don't check the page
> alignment of the host-provided address before doing so, which could
> lead to the memset overrunning the page if the host was malicious.
>
> [...]
Applied to fixes, thanks!
[1/1] KVM: arm64: Fix alignment of kvm_hyp_memcache allocations
commit: b938731ed2d4eea8e268a27bfc600581fedae2a9
Cheers,
M.
--
Without deviation from the norm, progress is not possible.
Powered by blists - more mailing lists