CVE-2021-47092

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The vulnerability is related to the KVM component of the Linux kernel. It is caused by the incorrect handling of the vmx->fail flag when the vCPU is in L2 and emulation required is true. This behavior is considered bogus and can lead to a WARN in nested vmx vmexit() when tearing down the VM. The issue arises because setting vmx->fail and synthesizing a VM-Exit is contradictory and wrong. Specifically, it is impossible to have both a VM-Fail and VM-Exit, vmcs.EXIT REASON is not modified on VM-Fail, and emulation required refers to guest state and guest state checks are always VM-Exits, not VM-Fails. For KVM, emulation required is handled before nested exits in vmx handle exit(), thus setting vmx->fail has no immediate effect.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.