Re: [PATCH v2 10/13] KVM: x86: Protect memory accesses from Spectre-v1/L1TF attacks in x86.c

6 Jan 2020


      On Wed, Dec 11, 2019 at 12:49 PM Marios Pomonis pomonis@google.com wrote:
...
This fixes Spectre-v1/L1TF vulnerabilities in
vmx_read_guest_seg_selector(), vmx_read_guest_seg_base(),
vmx_read_guest_seg_limit() and vmx_read_guest_seg_ar().
These functions contain index computations based on the
(attacker-influenced) segment value.
Fixes: commit 2fb92db1ec08 ("KVM: VMX: Cache vmcs segment fields")
Signed-off-by: Nick Finco nifi@google.com
Signed-off-by: Marios Pomonis pomonis@google.com
Reviewed-by: Andrew Honig ahonig@google.com
Cc: stable@vger.kernel.org
Reviewed-by: Jim Mattson jmattson@google.com

2024

2023

2022

2021

2020

2019

2018

2017

Re: [PATCH v2 10/13] KVM: x86: Protect memory accesses from Spectre-v1/L1TF attacks in x86.c