CVE-2020-2732: Nested VMX vulnerability

[Boris Ostrovsky <boris.ostrovsky () oracle com>]

Under certain circumstances, an L2 guest may trick the L0 hypervisor into accessing sensitive L1 resources that are 
supposed to be inaccessible to the L2 guest
according to L1 hypervisor configuration.

Only Intel processors are affected.

Patches are attached. From cover letter:

  vmx_check_intercept is not yet fully implemented by KVM on Intel processors,
  causing e.g. the I/O or MSR interception bitmaps not to be checked.
  In general we can just disallow instruction emulation on behalf of L1,
  but this series also implements I/O port checks.


Thanks.
-boris

Attachment: CVE-2020-2732.tgz
Description: