Re: [PATCH 0/2] KVM: arm64: Avoid NULL dereference in vgic-v2 device attr accessors

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]


On Wed, 24 Apr 2024 18:39:57 +0100,
Oliver Upton <oliver.upton@xxxxxxxxx> wrote:
> Alex reports that it is possible to trigger a NULL dereference via the
> vgic-v2 device attribute accessors, stemming from a lack of sanitization
> of user input...
> Here's a fix + regression test for the bug. Obviously, I intend to take
> these as a fix ASAP.
> Oliver Upton (2):
>   KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr()
>   KVM: selftests: Add test for uaccesses to non-existent vgic-v2 CPUIF
>  arch/arm64/kvm/vgic/vgic-kvm-device.c         |  8 +--
>  .../testing/selftests/kvm/aarch64/vgic_init.c | 49 +++++++++++++++++++
>  2 files changed, 53 insertions(+), 4 deletions(-)
> base-commit: fec50db7033ea478773b159e0e2efb135270e3b7

Thanks Alex for the heads up!

Reviewed-by: Marc Zyngier <maz@xxxxxxxxxx>

Please queue this at your earliest convenience.


Without deviation from the norm, progress is not possible.

[Index of Archives]     [KVM ARM]     [KVM ia64]     [KVM ppc]     [Virtualization Tools]     [Spice Development]     [Libvirt]     [Libvirt Users]     [Linux USB Devel]     [Linux Audio Users]     [Yosemite Questions]     [Linux Kernel]     [Linux SCSI]     [XFree86]

  Powered by Linux