Security fix: check if IOMMU page is contained in the pinned physical page
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
The Ubuntu-power-systems project |
Fix Released
|
Critical
|
Canonical Kernel Team | ||
linux (Ubuntu) |
Fix Released
|
Critical
|
Canonical Kernel Team | ||
Bionic |
Fix Released
|
Critical
|
Canonical Kernel Team |
Bug Description
== SRU Justification ==
IBM is requesting commit 76fa4975f3ed in powerpc as a security fix.
This commit Fixes: 121f80ba68f1. Commit 76fa4975f3ed also requires
mainline commit 1463edca6734 as a prereq.
Both these commits have already been cc'd to upstream stable, but they
have not landed in Bionic as of yet.
== Fixes ==
1463edca6734 ("vfio/spapr: Use IOMMU pageshift rather than pagesize")
76fa4975f3ed ("KVM: PPC: Check if IOMMU page is contained in the pinned physical page")
== Regression Potential ==
Low. These commits have also been sent to upstream stable, so have had
additional upstream review.
== Test Case ==
A test kernel was built with these patches and tested by the original bug reporter.
The bug reporter states the test kernel resolved the bug.
== Comment: #0 - Leonardo Augusto Guimaraes Garcia - 2018-08-06 12:27:59 ==
Please, add the following security fix to the distro kernel:
76fa4975f3ed KVM: PPC: Check if IOMMU page is contained in the pinned physical page
Also already available in the 4.14 stable tree:
58113603a4ea KVM: PPC: Check if IOMMU page is contained in the pinned physical page
And in the 4.17 stable tree:
970e28cb2c7a KVM: PPC: Check if IOMMU page is contained in the pinned physical page
CVE References
tags: | added: architecture-ppc64le bugnameltc-170311 severity-critical targetmilestone-inin1804 |
Changed in ubuntu: | |
assignee: | nobody → Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage) |
affects: | ubuntu → linux (Ubuntu) |
Changed in ubuntu-power-systems: | |
assignee: | nobody → Canonical Kernel Team (canonical-kernel-team) |
importance: | Undecided → Critical |
tags: | added: triage-g |
Changed in linux (Ubuntu): | |
importance: | Undecided → Critical |
Changed in linux (Ubuntu Bionic): | |
importance: | Undecided → Critical |
status: | New → Triaged |
Changed in linux (Ubuntu): | |
status: | New → Triaged |
Changed in ubuntu-power-systems: | |
status: | New → Triaged |
Changed in linux (Ubuntu): | |
assignee: | Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage) → Canonical Kernel Team (canonical-kernel-team) |
Changed in linux (Ubuntu Bionic): | |
assignee: | nobody → Canonical Kernel Team (canonical-kernel-team) |
Changed in ubuntu-power-systems: | |
status: | Triaged → In Progress |
Changed in linux (Ubuntu Bionic): | |
status: | Triaged → Fix Committed |
Changed in ubuntu-power-systems: | |
status: | In Progress → Fix Committed |
Changed in linux (Ubuntu): | |
status: | Triaged → Fix Committed |
Changed in linux (Ubuntu): | |
status: | Fix Committed → Fix Released |
Changed in ubuntu-power-systems: | |
status: | Fix Committed → Fix Released |
tags: | added: cscc |
I built a test kernel with commit 76fa4975f3ed. It required commit 1463edca6734d as a prereq.
The test kernel can be downloaded from: kernel. ubuntu. com/~jsalisbury /lp1785675
http://
Can you test this kernel and see if it resolves this bug?
Note about installing test kernels: unsigned .deb packages.
* If the test kernel is prior to 4.15(Bionic) you need to install the linux-image and linux-image-extra .deb packages.
* If the test kernel is 4.15(Bionic) or newer, you need to install the linux-modules, linux-modules-extra and linux-image-
Thanks in advance!