Jason Wang ff002269a4 vhost: Fix Spectre V1 vulnerability ...

The idx in vhost_vring_ioctl() was controlled by userspace, hence a
potential exploitation of the Spectre variant 1 vulnerability.

Fixing this by sanitizing idx before using it to index d->vqs.

Cc: Michael S. Tsirkin <mst@redhat.com>
Cc: Josh Poimboeuf <jpoimboe@redhat.com>
Cc: Andrea Arcangeli <aarcange@redhat.com>
Signed-off-by: Jason Wang <jasowang@redhat.com>
Signed-off-by: David S. Miller <davem@davemloft.net>

2018-10-31 12:39:15 -07:00

..

Kconfig

vhost: allow vhost-scsi driver to be built-in

2018-08-22 01:01:32 +03:00

Kconfig.vringh

vhost: split out vringh Kconfig

2016-08-02 16:54:28 +03:00

Makefile

License cleanup: add SPDX GPL-2.0 license identifier to files with no license

2017-11-02 11:10:55 +01:00

net.c

net: vhost: remove bad code line

2018-10-07 21:31:32 -07:00

scsi.c

Merge tag 'for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/mst/vhost

2018-08-24 08:45:19 -07:00

test.c

treewide: kmalloc() -> kmalloc_array()

2018-06-12 16:19:22 -07:00

test.h

License cleanup: add SPDX GPL-2.0 license identifier to files with no license

2017-11-02 11:10:55 +01:00

vhost.c

vhost: Fix Spectre V1 vulnerability

2018-10-31 12:39:15 -07:00

vhost.h

vhost: switch to use new message format

2018-08-06 10:41:04 -07:00

vringh.c

treewide: kmalloc() -> kmalloc_array()

2018-06-12 16:19:22 -07:00

vsock.c

Merge tag 'for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/mst/vhost

2018-04-06 19:21:41 -07:00