UBUNTU-CVE-2020-8834
See a problem?- Source
- https://ubuntu.com/security/notices/UBUNTU-CVE-2020-8834
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2020/UBUNTU-CVE-2020-8834.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2020-8834
- Related
- Published
- 2020-04-06T16:00:00Z
- Modified
- 2020-04-06T16:00:00Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVSS Calculator
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
KVM in the Linux kernel on Power8 processors has a conflicting use of HSTATEHOSTR1 to store r1 state in kvmppchventry plus in kvmppc{save,restore}tm, leading to a stack corruption. Because of this, an attacker with the ability run code in kernel space of a guest VM can cause the host kernel to panic. There were two commits that, according to the reporter, introduced the vulnerability: f024ee098476 ("KVM: PPC: Book3S HV: Pull out TM state save/restore into separate procedures") 87a11bb6a7f7 ("KVM: PPC: Book3S HV: Work around XER[SO] bug in fake suspend mode") The former landed in 4.8, the latter in 4.17. This was fixed without realizing the impact in 4.18 with the following three commits, though it's believed the first is the only strictly necessary commit: 6f597c6b63b6 ("KVM: PPC: Book3S PR: Add guest MSR parameter for kvmppcsavetm()/kvmppcrestoretm()") 7b0e827c6970 ("KVM: PPC: Book3S HV: Factor fake-suspend handling out of kvmppcsave/restoretm") 009c872a8bc4 ("KVM: PPC: Book3S PR: Move kvmppcsavetm/kvmppcrestoretm to separate file")
- References
Affected packages
Ubuntu:16.04:LTS / linux-hwe
Package
- Name
- linux-hwe
- Purl
- pkg:deb/ubuntu/linux-hwe@4.15.0-96.97~16.04.1?arch=src?distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.15.0-96.97~16.04.1
Affected versions
4.*
4.8.0-36.36~16.04.1
4.8.0-39.42~16.04.1
4.8.0-41.44~16.04.1
4.8.0-42.45~16.04.1
4.8.0-44.47~16.04.1
4.8.0-45.48~16.04.1
4.8.0-46.49~16.04.1
4.8.0-49.52~16.04.1
4.8.0-51.54~16.04.1
4.8.0-52.55~16.04.1
4.8.0-53.56~16.04.1
4.8.0-54.57~16.04.1
4.8.0-56.61~16.04.1
4.8.0-58.63~16.04.1
4.10.0-27.30~16.04.2
4.10.0-28.32~16.04.2
4.10.0-30.34~16.04.1
4.10.0-32.36~16.04.1
4.10.0-33.37~16.04.1
4.10.0-35.39~16.04.1
4.10.0-37.41~16.04.1
4.10.0-38.42~16.04.1
4.10.0-40.44~16.04.1
4.10.0-42.46~16.04.1
4.13.0-26.29~16.04.2
4.13.0-31.34~16.04.1
4.13.0-32.35~16.04.1
4.13.0-36.40~16.04.1
4.13.0-37.42~16.04.1
4.13.0-38.43~16.04.1
4.13.0-39.44~16.04.1
4.13.0-41.46~16.04.1
4.13.0-43.48~16.04.1
4.13.0-45.50~16.04.1
4.15.0-24.26~16.04.1
4.15.0-29.31~16.04.1
4.15.0-30.32~16.04.1
4.15.0-32.35~16.04.1
4.15.0-33.36~16.04.1
4.15.0-34.37~16.04.1
4.15.0-36.39~16.04.1
4.15.0-38.41~16.04.1
4.15.0-39.42~16.04.1
4.15.0-42.45~16.04.1
4.15.0-43.46~16.04.1
4.15.0-45.48~16.04.1
4.15.0-46.49~16.04.1
4.15.0-47.50~16.04.1
4.15.0-48.51~16.04.1
4.15.0-50.54~16.04.1
4.15.0-51.55~16.04.1
4.15.0-52.56~16.04.1
4.15.0-54.58~16.04.1
4.15.0-55.60~16.04.2
4.15.0-58.64~16.04.1
4.15.0-60.67~16.04.1
4.15.0-62.69~16.04.1
4.15.0-64.73~16.04.1
4.15.0-65.74~16.04.1
4.15.0-66.75~16.04.1
4.15.0-69.78~16.04.1
4.15.0-70.79~16.04.1
4.15.0-72.81~16.04.1
4.15.0-74.83~16.04.1
4.15.0-76.86~16.04.1
4.15.0-88.88~16.04.1
4.15.0-91.92~16.04.1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"linux-image-4.15.0-96-generic-lpae-dbgsym": "4.15.0-96.97~16.04.1",
"linux-image-4.15.0-96-lowlatency-dbgsym": "4.15.0-96.97~16.04.1",
"linux-image-4.15.0-96-lowlatency": "4.15.0-96.97~16.04.1",
"fs-secondary-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"pcmcia-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"dasd-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"linux-hwe-udebs-generic-lpae": "4.15.0-96.97~16.04.1",
"linux-image-unsigned-4.15.0-96-generic-dbgsym": "4.15.0-96.97~16.04.1",
"virtio-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"linux-buildinfo-4.15.0-96-generic": "4.15.0-96.97~16.04.1",
"linux-modules-extra-4.15.0-96-generic": "4.15.0-96.97~16.04.1",
"floppy-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"fat-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"irda-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"multipath-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"pata-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"linux-tools-4.15.0-96-generic": "4.15.0-96.97~16.04.1",
"linux-modules-4.15.0-96-lowlatency": "4.15.0-96.97~16.04.1",
"multipath-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"nic-shared-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"plip-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"vlan-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"linux-image-unsigned-4.15.0-96-generic": "4.15.0-96.97~16.04.1",
"usb-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"linux-tools-4.15.0-96-generic-lpae": "4.15.0-96.97~16.04.1",
"serial-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"nic-usb-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"nfs-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"nic-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"usb-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"sata-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"nic-usb-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"block-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"kernel-image-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"ipmi-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"linux-cloud-tools-4.15.0-96-generic": "4.15.0-96.97~16.04.1",
"nic-pcmcia-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"input-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"fs-core-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"ipmi-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"parport-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"md-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"linux-headers-4.15.0-96-generic": "4.15.0-96.97~16.04.1",
"linux-modules-4.15.0-96-generic": "4.15.0-96.97~16.04.1",
"firewire-core-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"sata-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"linux-modules-4.15.0-96-generic-lpae": "4.15.0-96.97~16.04.1",
"block-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"linux-buildinfo-4.15.0-96-generic-lpae": "4.15.0-96.97~16.04.1",
"linux-hwe-udebs-generic": "4.15.0-96.97~16.04.1",
"fat-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"linux-image-unsigned-4.15.0-96-lowlatency-dbgsym": "4.15.0-96.97~16.04.1",
"linux-image-4.15.0-96-generic": "4.15.0-96.97~16.04.1",
"dasd-extra-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"message-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"linux-tools-4.15.0-96-lowlatency": "4.15.0-96.97~16.04.1",
"linux-cloud-tools-4.15.0-96-lowlatency": "4.15.0-96.97~16.04.1",
"linux-source-4.15.0": "4.15.0-96.97~16.04.1",
"linux-hwe-tools-4.15.0-96": "4.15.0-96.97~16.04.1",
"crypto-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"fs-core-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"linux-headers-4.15.0-96-generic-lpae": "4.15.0-96.97~16.04.1",
"nfs-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"nic-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"nic-shared-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"parport-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"scsi-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"crypto-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"linux-image-4.15.0-96-generic-dbgsym": "4.15.0-96.97~16.04.1",
"linux-headers-4.15.0-96": "4.15.0-96.97~16.04.1",
"mouse-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"ppp-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"storage-core-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"kernel-image-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"vlan-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"linux-image-4.15.0-96-generic-lpae": "4.15.0-96.97~16.04.1",
"storage-core-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"fs-secondary-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"linux-buildinfo-4.15.0-96-lowlatency": "4.15.0-96.97~16.04.1",
"scsi-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"pcmcia-storage-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"ppp-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"md-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"input-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"linux-image-unsigned-4.15.0-96-lowlatency": "4.15.0-96.97~16.04.1",
"linux-headers-4.15.0-96-lowlatency": "4.15.0-96.97~16.04.1",
"fb-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1",
"mouse-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"plip-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97~16.04.1",
"linux-hwe-cloud-tools-4.15.0-96": "4.15.0-96.97~16.04.1",
"irda-modules-4.15.0-96-generic-di": "4.15.0-96.97~16.04.1"
}
]
}
Ubuntu:Pro:16.04:LTS / linux-hwe-edge
Package
- Name
- linux-hwe-edge
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
4.*
4.8.0-28.30~16.04.1
4.8.0-30.32~16.04.1
4.8.0-32.34~16.04.1
4.8.0-34.36~16.04.1
4.10.0-14.16~16.04.1
4.10.0-19.21~16.04.1
4.10.0-20.22~16.04.1
4.10.0-21.23~16.04.1
4.10.0-22.24~16.04.1
4.10.0-24.28~16.04.1
4.10.0-26.30~16.04.1
4.11.0-13.19~16.04.1
4.11.0-14.20~16.04.1
4.13.0-16.19~16.04.3
4.13.0-17.20~16.04.1
4.13.0-19.22~16.04.1
4.13.0-21.24~16.04.1
4.13.0-25.29~16.04.2
4.15.0-13.14~16.04.1
4.15.0-15.16~16.04.1
4.15.0-20.21~16.04.1
4.15.0-22.24~16.04.1
4.15.0-23.25~16.04.1
Ubuntu:18.04:LTS / linux
Package
- Name
- linux
- Purl
- pkg:deb/ubuntu/linux@4.15.0-96.97?arch=src?distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.15.0-96.97
Affected versions
4.*
4.13.0-16.19
4.13.0-17.20
4.13.0-25.29
4.13.0-32.35
4.15.0-10.11
4.15.0-12.13
4.15.0-13.14
4.15.0-15.16
4.15.0-19.20
4.15.0-20.21
4.15.0-22.24
4.15.0-23.25
4.15.0-24.26
4.15.0-29.31
4.15.0-30.32
4.15.0-32.35
4.15.0-33.36
4.15.0-34.37
4.15.0-36.39
4.15.0-38.41
4.15.0-39.42
4.15.0-42.45
4.15.0-43.46
4.15.0-44.47
4.15.0-45.48
4.15.0-46.49
4.15.0-47.50
4.15.0-48.51
4.15.0-50.54
4.15.0-51.55
4.15.0-52.56
4.15.0-54.58
4.15.0-55.60
4.15.0-58.64
4.15.0-60.67
4.15.0-62.69
4.15.0-64.73
4.15.0-65.74
4.15.0-66.75
4.15.0-69.78
4.15.0-70.79
4.15.0-72.81
4.15.0-74.84
4.15.0-76.86
4.15.0-88.88
4.15.0-91.92
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"linux-image-4.15.0-96-generic-lpae-dbgsym": "4.15.0-96.97",
"linux-image-4.15.0-96-lowlatency-dbgsym": "4.15.0-96.97",
"linux-image-4.15.0-96-lowlatency": "4.15.0-96.97",
"fs-secondary-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"pcmcia-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"dasd-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"linux-image-unsigned-4.15.0-96-generic-dbgsym": "4.15.0-96.97",
"virtio-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"linux-tools-4.15.0-96": "4.15.0-96.97",
"linux-udebs-generic": "4.15.0-96.97",
"linux-buildinfo-4.15.0-96-generic": "4.15.0-96.97",
"linux-modules-extra-4.15.0-96-generic": "4.15.0-96.97",
"floppy-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"fat-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"irda-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"multipath-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"pata-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"linux-tools-4.15.0-96-generic": "4.15.0-96.97",
"linux-modules-4.15.0-96-lowlatency": "4.15.0-96.97",
"multipath-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"nic-shared-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"plip-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"vlan-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"linux-image-unsigned-4.15.0-96-generic": "4.15.0-96.97",
"usb-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"linux-tools-4.15.0-96-generic-lpae": "4.15.0-96.97",
"serial-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"nic-usb-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"nfs-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"nic-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"usb-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"sata-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"nic-usb-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"block-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"kernel-image-4.15.0-96-generic-di": "4.15.0-96.97",
"ipmi-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"linux-cloud-tools-4.15.0-96-generic": "4.15.0-96.97",
"nic-pcmcia-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"input-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"fs-core-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"ipmi-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"parport-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"md-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"linux-headers-4.15.0-96-generic": "4.15.0-96.97",
"linux-modules-4.15.0-96-generic": "4.15.0-96.97",
"firewire-core-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"sata-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"block-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"linux-modules-4.15.0-96-generic-lpae": "4.15.0-96.97",
"linux-buildinfo-4.15.0-96-generic-lpae": "4.15.0-96.97",
"message-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"fat-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"linux-image-4.15.0-96-generic": "4.15.0-96.97",
"linux-image-unsigned-4.15.0-96-lowlatency-dbgsym": "4.15.0-96.97",
"dasd-extra-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"linux-tools-4.15.0-96-lowlatency": "4.15.0-96.97",
"linux-cloud-tools-4.15.0-96-lowlatency": "4.15.0-96.97",
"linux-source-4.15.0": "4.15.0-96.97",
"linux-cloud-tools-common": "4.15.0-96.97",
"crypto-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"linux-libc-dev": "4.15.0-96.97",
"fs-core-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"linux-headers-4.15.0-96-generic-lpae": "4.15.0-96.97",
"linux-doc": "4.15.0-96.97",
"nic-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"nic-shared-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"parport-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"nfs-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"scsi-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"crypto-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"linux-image-4.15.0-96-generic-dbgsym": "4.15.0-96.97",
"linux-cloud-tools-4.15.0-96": "4.15.0-96.97",
"linux-headers-4.15.0-96": "4.15.0-96.97",
"mouse-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"ppp-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"storage-core-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"kernel-image-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"vlan-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"linux-tools-host": "4.15.0-96.97",
"linux-image-4.15.0-96-generic-lpae": "4.15.0-96.97",
"storage-core-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"fs-secondary-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"linux-udebs-generic-lpae": "4.15.0-96.97",
"linux-buildinfo-4.15.0-96-lowlatency": "4.15.0-96.97",
"scsi-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"pcmcia-storage-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"ppp-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"md-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"input-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"linux-image-unsigned-4.15.0-96-lowlatency": "4.15.0-96.97",
"linux-headers-4.15.0-96-lowlatency": "4.15.0-96.97",
"fb-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"linux-tools-common": "4.15.0-96.97",
"mouse-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97",
"irda-modules-4.15.0-96-generic-di": "4.15.0-96.97",
"plip-modules-4.15.0-96-generic-lpae-di": "4.15.0-96.97"
}
]
}