CVE-2021-47094

KVM: x86/mmu: Don't advance iterator after restart due to yielding

References

https://cve.org/CVERecord/?id=CVE-2021-47094

Notes

 carnil> Introduced in faaf05b00aec ("kvm: x86/mmu: Support zapping SPTEs in the TDP
 carnil> MMU")
 carnil> 1af4a96025b3 ("KVM: x86/mmu: Yield in TDU MMU iter even if no SPTES changed").
 carnil> Vulnerable versions: 5.10-rc1 5.10.30 5.11.14 5.12-rc1.

Bugs

Status

Branch	Status
4.19-buster-security	N/A "Vulnerable code not present"
4.19-upstream-stable	N/A "Vulnerable code not present"
5.10-bullseye-security	needed
5.10-upstream-stable	needed
6.1-bookworm-security	N/A "Fixed before branching point"
6.1-upstream-stable	N/A "Fixed before branching point"
6.6-upstream-stable	N/A "Fixed before branching point"
6.8-upstream-stable	N/A "Fixed before branching point"
sid	released (5.15.15-1)
upstream	released (5.16-rc7) [3a0f64de479cae75effb630a2e0a237ca0d0623c]