Fixed
Created: Mar 17, 2024
Updated: May 10, 2024
Resolved Date: May 9, 2024
Found In Version: 10.21.20.1
Fix Version: 10.21.20.21
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:
x86/kvm: Teardown PV features on boot CPU as well
Various PV features (Async PF, PV EOI, steal time) work through memory
shared with hypervisor and when we restore from hibernation we must
properly teardown all these features to make sure hypervisor doesn't
write to stale locations after we jump to the previously hibernated kernel
(which can try to place anything there). For secondary CPUs the job is
already done by kvm_cpu_down_prepare(), register syscore ops to do
the same for boot CPU.
CREATE(Triage):(User=admin) CVE-2021-47112 (https://nvd.nist.gov/vuln/detail/CVE-2021-47112)