Google Git
Sign in
gfiber / kernel / bruno / 91e1f7b0eb252ce8f88d69227ef5f52f9efb2aae
commit91e1f7b0eb252ce8f88d69227ef5f52f9efb2aae[log] [tgz]
authorOwen Hofmann <osh@google.com>Thu Oct 27 11:25:52 2016 -0700
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>Thu Nov 10 16:36:37 2016 +0100
tree0e942486ede38cec21fc09ec13e66ad31c352efa
parent62fa839b8fff08425bcc6bcdd5533ef4a267aa87 [diff]
kvm: x86: Check memopp before dereference (CVE-2016-8630)

commit d9092f52d7e61dd1557f2db2400ddb430e85937e upstream.

Commit 41061cdb98 ("KVM: emulate: do not initialize memopp") removes a
check for non-NULL under incorrect assumptions. An undefined instruction
with a ModR/M byte with Mod=0 and R/M-5 (e.g. 0xc7 0x15) will attempt
to dereference a null pointer here.

Fixes: 41061cdb98a0bec464278b4db8e894a3121671f5
Message-Id: <1477592752-126650-2-git-send-email-osh@google.com>
Signed-off-by: Owen Hofmann <osh@google.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
1 file changed
tree: 0e942486ede38cec21fc09ec13e66ad31c352efa
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .get_maintainer.ignore
  24. .gitignore
  25. .mailmap
  26. COPYING
  27. CREDITS
  28. Kbuild
  29. Kconfig
  30. MAINTAINERS
  31. Makefile
  32. README
  33. REPORTING-BUGS