Description
In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: nv: Fix handling of XN[0] when !FEAT_XNX XN has already been extracted from its bitfield position so using FIELD_PREP() on the mask that clears XN[0] is completely broken, having the effect of unconditionally granting execute permissions... Fix the obvious mistake by manipulating the right bit.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High
Affected products
- Linux / Linuxd93febe2ed2e0491af9d47f0ee6d4b01918877f4 – b95976c2ea446044553a5f469c0bae13553d75ab
- Linux / Linuxd93febe2ed2e0491af9d47f0ee6d4b01918877f4 – 49b32ddb87a3a109afecea89e55d70f73956b8bc
- Linux / Linux6.19 – 6.19
- Linux / Linux0 – 6.19
- Linux / Linux7.0.13 – 7.0.*
- Linux / Linux7.1 – *