Wind River Support Network

HomeDefectsLIN9-8094
Fixed

LIN9-8094 : Security Advisory - linux - CVE-2019-7222

Created: Feb 14, 2019    Updated: May 18, 2019
Resolved Date: Apr 19, 2019
Found In Version: 9.0.0.19
Fix Version: 9.0.0.21
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Kernel

Description

An information leakage issue was found in the way Linux kernel's KVM hypervisor handled page fault exception while emulating instructions like VMXON, VMCLEAR, VMPTRLD, VMWRITE with memory address as an operand. It occurs if the operand is an mmio address, as the returned exception object holds uninitialised stack memory Contents.

https://nvd.nist.gov/vuln/detail/CVE-2019-7222

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube