Wind River Support Network

HomeDefectsSCP7-966
Fixed

SCP7-966 : Security Advisory - linux - CVE-2019-7222

Created: Feb 14, 2019    Updated: May 21, 2019
Resolved Date: Apr 2, 2019
Found In Version: 7.0.0.30
Fix Version: 7.0.0.30
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Kernel

Description

An information leakage issue was found in the way Linux kernel's KVM hypervisor handled page fault exception while emulating instructions like VMXON, VMCLEAR, VMPTRLD, VMWRITE with memory address as an operand. It occurs if the operand is an mmio address, as the returned exception object holds uninitialised stack memory Contents.

https://nvd.nist.gov/vuln/detail/CVE-2019-7222
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube