** Changed in: linux (Ubuntu Disco)
Status: Fix Committed => Won't Fix
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1860657
Title:
Prevent arm64 guest from accessing host debug registers
This bug was fixed in the package linux - 4.15.0-91.92
---
linux (4.15.0-91.92) bionic; urgency=medium
* bionic/linux: 4.15.0-91.92 -proposed tracker (LP: #1865109)
* CVE-2020-2732
- KVM: x86: emulate RDPID
- KVM: nVMX: Don't emulate instructions in guest mode
- KVM:
This bug was fixed in the package linux - 5.3.0-42.34
---
linux (5.3.0-42.34) eoan; urgency=medium
* eoan/linux: 5.3.0-42.34 -proposed tracker (LP: #1865111)
* CVE-2020-2732
- KVM: nVMX: Don't emulate instructions in guest mode
- KVM: nVMX: Refactor IO bitmap checks into
This bug is awaiting verification that the kernel in -proposed solves
the problem. Please test the kernel and update this bug with the
results. If the problem is solved, change the tag 'verification-needed-
eoan' to 'verification-done-eoan'. If the problem still exists, change
the tag
This bug is awaiting verification that the kernel in -proposed solves
the problem. Please test the kernel and update this bug with the
results. If the problem is solved, change the tag 'verification-needed-
bionic' to 'verification-done-bionic'. If the problem still exists,
change the tag
** Changed in: linux (Ubuntu Bionic)
Status: In Progress => Fix Committed
** Changed in: linux (Ubuntu Disco)
Status: In Progress => Fix Committed
** Changed in: linux (Ubuntu Eoan)
Status: In Progress => Fix Committed
--
You received this bug notification because you are
** Also affects: linux (Ubuntu Eoan)
Importance: Undecided
Status: New
** Also affects: linux (Ubuntu Bionic)
Importance: Undecided
Status: New
** Also affects: linux (Ubuntu Focal)
Importance: Medium
Assignee: Thadeu Lima de Souza Cascardo (cascardo)
Status:
** Summary changed:
- arm64/KVM debug registers vulnerability
+ Prevent arm64 guest from accessing host debug registers
** Description changed:
[Impact]
+ Guests could access host debug/PMU registers. This could happen very briefly
before they are first preempted.
+ This only affects arm64