KVM: x86: Fix kernel info-leak in KVM_HC_CLOCK_PAIRING hypercall - linux-dev - Linux kernel development work

diff options

author	Liran Alon <liran.alon@oracle.com>	2018-11-08 00:43:06 +0200
committer	Paolo Bonzini <pbonzini@redhat.com>	2018-11-27 12:49:57 +0100
commit	bcbfbd8ec21096027f1ee13ce6c185e8175166f6 (patch)
tree	37f93e550fe07cf619662e165db685793e9ae347 /tools/perf/scripts/python/export-to-postgresql.py
parent	KVM: nVMX: Fix kernel info-leak when enabling KVM_CAP_HYPERV_ENLIGHTENED_VMCS more than once (diff)
download	linux-dev-bcbfbd8ec21096027f1ee13ce6c185e8175166f6.tar.xz linux-dev-bcbfbd8ec21096027f1ee13ce6c185e8175166f6.zip

KVM: x86: Fix kernel info-leak in KVM_HC_CLOCK_PAIRING hypercall

kvm_pv_clock_pairing() allocates local var "struct kvm_clock_pairing clock_pairing" on stack and initializes all it's fields besides padding (clock_pairing.pad[]). Because clock_pairing var is written completely (including padding) to guest memory, failure to init struct padding results in kernel info-leak. Fix the issue by making sure to also init the padding with zeroes. Fixes: 55dd00a73a51 ("KVM: x86: add KVM_HC_CLOCK_PAIRING hypercall") Reported-by: syzbot+a8ef68d71211ba264f56@syzkaller.appspotmail.com Reviewed-by: Mark Kanda <mark.kanda@oracle.com> Signed-off-by: Liran Alon <liran.alon@oracle.com> Cc: stable@vger.kernel.org Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

Diffstat (limited to 'tools/perf/scripts/python/export-to-postgresql.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: