Vulnerability CVE-2021-43056

Vulnerability Name:

CVE-2021-43056 (CCN-211962)

Assigned:

2021-10-25

Published:

2021-10-25

Updated:

2021-11-28

Summary:

An issue was discovered in the Linux kernel for powerpc before 5.14.15. It allows a malicious KVM guest to crash the host, when the host is running on Power8, due to an arch/powerpc/kvm/book3s_hv_rmhandlers.S implementation bug in the handling of the SRR1 register values.

CVSS v3 Severity:

5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
5.4 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

5.5 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
4.8 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

CVSS v2 Severity:

4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

4.9 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

Vulnerability Type:

CWE-noinfo
CWE-252

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2021-43056

Source: MLIST
Type: Mailing List, Patch, Third Party Advisory
[oss-security] 20211028 Re: Linux kernel: powerpc: KVM guest can trigger host crash on Power8

Source: MISC
Type: Release Notes, Vendor Advisory
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.14.15

Source: XF
Type: UNKNOWN
linux-kernel-kvmguest-dos(211962)

Source: MISC
Type: Patch, Vendor Advisory
https://git.kernel.org/linus/cdeb5d7d890e14f3b70e8087e745c4a6a7d9f337

Source: CCN
Type: Linux Kernel GIT Repository
KVM: PPC: Book3S HV: Make idle_kvm_start_guest() return 0 if it went to guest

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2021-4fed2b55c4

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2021-4320606094

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2021-ed8c2e1098

Source: MISC
Type: Patch, Vendor Advisory
https://lore.kernel.org/linuxppc-dev/87pmrtbbdt.fsf@mpe.ellerman.id.au/T/#u

Source: CCN
Type: oss-sec Mailing List, Mon, 25 Oct 2021 22:18:54 +1100
Linux kernel: powerpc: KVM guest can trigger host crash on Power8

Vulnerable Configuration:

Configuration 1:

cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:* (Version >= 5.2 and < 5.4.15)

Configuration 2:

cpe:/o:fedoraproject:fedora:33:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:34:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:35:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:enterprise_linux:8::crb:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:8::baseos:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:8029	P	kernel-docs-5.14.21-150500.53.2 on GA media (Moderate)	2023-06-20
oval:org.opensuse.security:def:7577	P	libbpf0-0.5.0-150400.3.3.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7539	P	kernel-64kb-5.14.21-150500.53.2 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7591	P	libfreebl3-3.79.4-150400.3.29.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7711	P	libzypp-17.31.8-150400.3.14.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:8090	P	reiserfs-kmp-default-5.14.21-150500.53.2 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7718	P	mercurial-5.9.1-150400.1.8 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:808	P	Security update for ImageMagick (Low)	2022-10-07
oval:org.opensuse.security:def:3712	P	Security update for go1.18 (Important)	2022-08-04
oval:org.opensuse.security:def:3709	P	Security update for libguestfs (Moderate)	2022-07-28
oval:org.opensuse.security:def:3567	P	libXtst6-1.2.2-7.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3526	P	ibus-chewing-1.4.14-4.11 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3398	P	wpa_supplicant-2.6-15.10.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3448	P	busybox-1.21.1-3.3 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3453	P	clamav-0.101.3-1.19 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94928	P	libXrandr2-32bit-1.5.1-2.17 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2960	P	kernel-64kb-5.14.21-150400.22.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:95078	P	reiserfs-kmp-default-5.14.21-150400.22.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:95083	P	kernel-azure-5.14.21-150400.12.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94590	P	kernel-64kb-5.14.21-150400.22.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:95197	P	kernel-default-extra-5.14.21-150400.22.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94638	P	libgstphotography-1_0-0-1.20.1-150400.1.8 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:95028	P	kernel-docs-5.14.21-150400.22.1 on GA media (Moderate)	2022-06-22
oval:com.redhat.rhsa:def:20221988	P	RHSA-2022:1988: kernel security, bug fix, and enhancement update (Important)	2022-05-10
oval:org.opensuse.security:def:102145	P	Security update for libxml2 (Important) (in QA)	2022-04-29
oval:org.opensuse.security:def:4587	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP5) (Important)	2022-04-25
oval:org.opensuse.security:def:4588	P	Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP5) (Important)	2022-04-25
oval:org.opensuse.security:def:101641	P	Security update for systemd (Moderate)	2022-02-21
oval:org.opensuse.security:def:102153	P	Security update for the Linux RT Kernel (Important)	2021-12-09
oval:org.opensuse.security:def:64615	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:96185	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:117531	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:109666	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:10666	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:67549	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:103000	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:4519	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:95786	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:8375	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:7220	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:5892	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:96328	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:117821	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:108819	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:6460	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:108017	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:101351	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:117889	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:95440	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:108966	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:102300	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:118637	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:109541	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:74676	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:42140	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:108307	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:102875	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:65608	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:118088	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:76049	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:95587	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:109165	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:73737	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:70806	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:68309	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:66981	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:102499	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:119806	P	Security update for the Linux Kernel (Important)	2021-11-19
oval:org.opensuse.security:def:100017	P	(Important)	2021-11-16
oval:org.opensuse.security:def:1277	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:6232	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:100682	P	(Important)	2021-11-16
oval:org.opensuse.security:def:111789	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:99433	P	(Important)	2021-11-16
oval:org.opensuse.security:def:1744	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:74745	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:101815	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:42239	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:65677	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:811	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:101930	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:73923	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:70843	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:68368	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:1223	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:64801	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:102340	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:10703	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:100353	P	(Important)	2021-11-16
oval:org.opensuse.security:def:67574	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:99161	P	(Important)	2021-11-16
oval:org.opensuse.security:def:76389	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:101542	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:8400	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:1788	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:7279	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:67321	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:101883	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:6485	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:1137	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:111133	P	Security update for the Linux Kernel (Important)	2021-11-15
oval:org.opensuse.security:def:111126	P	Security update for the Linux Kernel (Important)	2021-11-13
oval:org.opensuse.security:def:102299	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:74744	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:101814	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:65676	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:101929	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:73920	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:70842	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:68367	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:1222	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:64798	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:102339	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:10702	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:68800	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:100350	P	(Important)	2021-11-11
oval:org.opensuse.security:def:67573	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:99160	P	(Important)	2021-11-11
oval:org.opensuse.security:def:118433	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:76383	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:109342	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:101539	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:42139	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:8397	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:99695	P	(Important)	2021-11-11
oval:org.opensuse.security:def:1787	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:7278	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:67315	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:102676	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:101882	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:6484	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:1136	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:95963	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:100014	P	(Important)	2021-11-11
oval:org.opensuse.security:def:1276	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:6226	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:100679	P	(Important)	2021-11-11
oval:org.opensuse.security:def:111783	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:99432	P	(Important)	2021-11-11
oval:org.opensuse.security:def:1741	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:5884	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:42237	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:108811	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:68680	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:118374	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:76379	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:109288	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:67311	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:102622	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:95432	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:1553	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:95909	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:6222	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:76041	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:68807	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:111779	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:1592	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:66973	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:102117	P	Security update for the Linux Kernel (Important)	2021-11-09
oval:org.opensuse.security:def:68666	P	Security update for the Linux Kernel (Important)	2021-11-09

BACK