On Wed, Oct 09, 2024 at 02:19:50PM +0800, libo.chen.cn@xxxxxxxxxxxxx wrote:
> From: Rick Edgecombe <rick.p.edgecombe@xxxxxxxxx>
>
> commit 03f5a999adba ("Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails")
>
> In CoCo VMs it is possible for the untrusted host to cause
> set_memory_encrypted() or set_memory_decrypted() to fail such that an
> error is returned and the resulting memory is shared. Callers need to
> take care to handle these errors to avoid returning decrypted (shared)
> memory to the page allocator, which could lead to functional or security
> issues.
>
> VMBus code could free decrypted pages if set_memory_encrypted()/decrypted()
> fails. Leak the pages if this happens.
>
> Signed-off-by: Rick Edgecombe <rick.p.edgecombe@xxxxxxxxx>
> Signed-off-by: Michael Kelley <mhklinux@xxxxxxxxxxx>
> Reviewed-by: Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@xxxxxxxxxxxxxxx>
> Acked-by: Kirill A. Shutemov <kirill.shutemov@xxxxxxxxxxxxxxx>
> Link: https://lore.kernel.org/r/20240311161558.1310-2-mhklinux@xxxxxxxxxxx
> Signed-off-by: Wei Liu <wei.liu@xxxxxxxxxx>
> Message-ID: <20240311161558.1310-2-mhklinux@xxxxxxxxxxx>
> Signed-off-by: Sasha Levin <sashal@xxxxxxxxxx>
>
> CVE-2024-36913
> Signed-off-by: Libo Chen <libo.chen.cn@xxxxxxxxxxxxx>
> ---
> This commit is backporting 03f5a999adba to the branch linux-5.15.y to
> solve the CVE-2024-36913. Please merge this commit to linux-5.15.y.
As I didn't take the 6.1 patch, I can't take this one yet either :(
