kvm: initialize all of the kvm_debugregs structure before sending it to userspace (!2638) · Merge requests · Red Hat / centos-stream / src / kernel / centos-stream-9

Jon Maloy requested to merge jmaloy/jmaloy-centos-stream-9:CVE-2023-1514_BZ#2179897-rhel-9.3 into main Jun 06, 2023

Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=2179897 Upstream: Merged CVE: CVE-2023-1513

kvm: initialize all of the kvm_debugregs structure before sending it to userspace

When calling the KVM_GET_DEBUGREGS ioctl, on some configurations, there might be some unitialized portions of the kvm_debugregs structure that could be copied to userspace. Prevent this as is done in the other kvm ioctls, by setting the whole structure to 0 before copying anything into it.

Bonus is that this reduces the lines of code as the explicit flag setting and reserved space zeroing out can be removed.

Signed-off-by: Jon Maloy jmaloy@redhat.com

Edited Jun 06, 2023 by Jon Maloy

kvm: initialize all of the kvm_debugregs structure before sending it to userspace

Merge request reports