Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 398577 (CVE-2012-0045) - kernel: KVM: syscall instruction induced guest panic (CVE-2012-0045)
Summary: kernel: KVM: syscall instruction induced guest panic (CVE-2012-0045)
Status: RESOLVED OBSOLETE
Alias: CVE-2012-0045
Product: Gentoo Security
Classification: Unclassified
Component: Kernel (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Kernel Security
URL: https://bugzilla.redhat.com/show_bug....
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2012-01-11 21:52 UTC by Michael Harrison
Modified: 2018-04-04 18:03 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Harrison 2012-01-11 21:52:14 UTC
32bit guests will crash (and 64bit guests may behave in a
wrong way) for example by simply executing following
nasm-demo-application:

    [bits 32]
    global _start
    SECTION .text
    _start: syscall

The reason seems a missing "invalid opcode"-trap (int6) for the
syscall opcode "0f05", which is not available on Intel CPUs
within non-longmodes, as also on some AMD CPUs within legacy-mode.
(depending on CPU vendor, MSR_EFER and cpuid)

Because previous mentioned OSs may not engage corresponding
syscall target-registers (STAR, LSTAR, CSTAR), they remain
NULL and (non trapping) syscalls are leading to multiple
faults and finally crashs.

Reference:
https://lkml.org/lkml/2011/12/28/170
http://www.spinics.net/lists/kvm/msg66633.html

Proposed patch:
http://www.spinics.net/lists/kvm/msg66633.html
Comment 1 Aaron Bauman (RETIRED) gentoo-dev 2018-04-04 18:03:55 UTC
There are no longer any 2.x or <3.2.14 kernels available in the repository with the exception of sys-kernel/xbox-sources which is unsupported by security.