Vulmon
<!--X-Body-Begin-->
<!--X-User-Header-->
oss-sec
mailing list archives
<!--X-User-Header-End-->
<!--X-TopPNI-->
By Date
By Thread
</form>
<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
CVE-2020-12888 Kernel: vfio: access to disabled MMIO space of some devices may lead to DoS scenario
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
From: P J P <ppandit () redhat com>
Date: Tue, 19 May 2020 17:04:57 +0530 (IST)
<!--X-Head-of-Message-End-->
<!--X-Head-Body-Sep-Begin-->
<!--X-Head-Body-Sep-End-->
<!--X-Body-of-Message-->
Hello,
A flaw was found in the Linux kernel, where it allows userspace processes, for
example, a guest VM, to directly access h/w devices via its VFIO driver
modules. The VFIO modules allow users to enable or disable access to the
devices' MMIO memory address spaces. If a user attempts to access (read/write)
the devices' MMIO address space when it is disabled, some h/w devices issue an
interrupt to the CPU to indicate a fatal error condition, crashing the system.
This flaw allows a guest user or process to crash the host system resulting in
a denial of service.
Upstream patch:
---------------
-> https://lore.kernel.org/kvm/158871570274.15589.10563806532874116326.stgit () gimli home/
-> https://lore.kernel.org/kvm/158871401328.15589.17598154478222071285.stgit () gimli home/
'CVE-2020-12888' requested via https://cveform.mitre.org/
Thank you.
--
Prasad J Pandit / Red Hat Product Security Team
8685 545E B54C 486B C6EB 271E E285 8B5A F050 DE8D
<!--X-Body-of-Message-End-->
<!--X-MsgBody-End-->
<!--X-Follow-Ups-->
<!--X-Follow-Ups-End-->
<!--X-References-->
<!--X-References-End-->
<!--X-BotPNI-->
By Date
By Thread
Current thread:
CVE-2020-12888 Kernel: vfio: access to disabled MMIO space of some devices may lead to DoS scenario P J P (May 19)
<!--X-BotPNI-End-->
<!--X-User-Footer-->
<!--X-User-Footer-End-->