1. Home
  2. Vulnerabilities
  3. CVE-2021-29657

CVE-2021-29657

CVSS v3.1 7.4 (High)
74% Progress
CVSS v2.0 6.9 (Medium)
69% Progress
EPSS 0.28 % (69th)
0.28% Progress
Affected Products 1
Advisories 1
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

arch/x86/kvm/svm/nested.c in the Linux kernel before 5.11.12 has a use-after-free in which an AMD KVM guest can bypass access control on host OS MSRs when there are nested guests, aka CID-a58d9166a756. This occurs because of a TOCTOU race condition associated with a VMCB12 double fetch in nested_svm_vmrun.

Weaknesses
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
CWE-416
Use After Free
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2021-07-22 17:15:09
(3 years ago)
Updated Date
2023-05-19 16:51:04
(16 months ago)

Affected Products

Linux

Configuration #1

    CPE23 From Up To
  Linux Kernel from 5.10 version and prior 5.10.28 version cpe:2.3:o:linux:linux_kernel >= 5.10 < 5.10.28
  Linux Kernel from 5.11 version and prior 5.11.12 version cpe:2.3:o:linux:linux_kernel >= 5.11 < 5.11.12