Home
HIGH: 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HDefault status
unaffected
73516e9da512adc63ba3859fbd82a21f6257348f (git) before 596c3f8069c4792f22fce8c4452f44410032d910
affected
73516e9da512adc63ba3859fbd82a21f6257348f (git) before 878cf6acb4fd8ab4126cf9d369a5bb0e23123418
affected
73516e9da512adc63ba3859fbd82a21f6257348f (git) before 47857b05bd50db01e211a1b6f513d57901cd3e6b
affected
73516e9da512adc63ba3859fbd82a21f6257348f (git) before 2db06c15d8c7a0ccb6108524e16cd9163753f354
affected
Default status
affected
6.10
affected
Any version before 6.10
unaffected
6.12.80 (semver)
unaffected
6.18.21 (semver)
unaffected
6.19.11 (semver)
unaffected
7.0 (original_commit_for_fix)
unaffected
Description
In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Make kvm_get_vcpu_by_cpuid() more robust kvm_get_vcpu_by_cpuid() takes a cpuid parameter whose type is int, so cpuid can be negative. Let kvm_get_vcpu_by_cpuid() return NULL for this case so as to make it more robust. This fix an out-of-bounds access to kvm_arch::phyid_map::phys_map[].
Product status
73516e9da512adc63ba3859fbd82a21f6257348f (git) before 596c3f8069c4792f22fce8c4452f44410032d910
73516e9da512adc63ba3859fbd82a21f6257348f (git) before 878cf6acb4fd8ab4126cf9d369a5bb0e23123418
73516e9da512adc63ba3859fbd82a21f6257348f (git) before 47857b05bd50db01e211a1b6f513d57901cd3e6b
73516e9da512adc63ba3859fbd82a21f6257348f (git) before 2db06c15d8c7a0ccb6108524e16cd9163753f354
6.10
Any version before 6.10
6.12.80 (semver)
6.18.21 (semver)
6.19.11 (semver)
7.0 (original_commit_for_fix)
References
git.kernel.org/...c/596c3f8069c4792f22fce8c4452f44410032d910
git.kernel.org/...c/878cf6acb4fd8ab4126cf9d369a5bb0e23123418
git.kernel.org/...c/47857b05bd50db01e211a1b6f513d57901cd3e6b
git.kernel.org/...c/2db06c15d8c7a0ccb6108524e16cd9163753f354