CVEs
Michael Ellerman edited this page Jan 5, 2023
·
12 revisions
Linux for powerpc specific CVEs we're aware of.
| CVE | Details | Title | Since | Fixed in |
|---|---|---|---|---|
| 2022-32981 | Buffer overflow in ptrace PEEKUSER/POKEUSER on 32-bit | v3.13 | v5.19 | |
| 2021-43056 | Details | KVM guest can trigger host crash on Power8 | v5.2 | v5.15 |
| 2021-37576 | Details | Guest to host memory corruption in H_RTAS due to missing nargs check | v3.10 | v5.14 |
| 2020-4788 | Details | Speculation on incompletely validated data on IBM Power9 | - | v5.10 |
| 2019-18660 | Details | Spectre RSB mitigation missing on <= P9 DD 2.2 | - | v5.5 |
| 2019-15031 | Data leak with FP/VMX triggerable by interrupt in transaction | v4.15 | v5.3 | |
| 2019-15030 | Data leak with FP/VMX triggerable by unavailable exception in transaction | v4.12 | v5.3 | |
| 2019-13648 | Kernel crash in TM handling triggerable by any local user | v3.9 | v5.3 | |
| 2019-12817 | Details | Unrelated processes may be able to read/write to each other's virtual memory | v4.17 | v5.2 |
| 2017-15306 | Fix oops when checking KVM_CAP_PPC_HTM | v4.8 | v4.14 | |
| 2017-1000255 | Kernel memory overwrite in transactional memory handling | v4.9 | v4.14 | |
| 2016-5412 | Infinite loop via H_CEDE hypercall when running under hypervisor-mode | ? | v3.15 |