SecuritySpace - CVE-2021-29657

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2021-29657

Description: arch/x86/kvm/svm/nested.c in the Linux kernel before 5.11.12 has a use-after-free in which an AMD KVM guest can bypass access control on host OS MSRs when there are nested guests, aka CID-a58d9166a756. This occurs because of a TOCTOU race condition associated with a VMCB12 double fetch in nested_svm_vmrun.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2021-29657
http://packetstormsecurity.com/files/163324/KVM-nested_svm_vmrun-Double-Fetch.html
https://bugs.chromium.org/p/project-zero/issues/detail?id=2177

CVE ID:	CVE-2021-29657
Description:	arch/x86/kvm/svm/nested.c in the Linux kernel before 5.11.12 has a use-after-free in which an AMD KVM guest can bypass access control on host OS MSRs when there are nested guests, aka CID-a58d9166a756. This occurs because of a TOCTOU race condition associated with a VMCB12 double fetch in nested_svm_vmrun.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2021-29657 http://packetstormsecurity.com/files/163324/KVM-nested_svm_vmrun-Double-Fetch.html https://bugs.chromium.org/p/project-zero/issues/detail?id=2177