Linux Kernel KVM Nested SVM User-Triggered Warning Removal Vulnerability

A vulnerability exists in the Linux kernel's KVM (Kernel-based Virtual Machine) component, specifically within the nested SVM (Secure Virtual Machine) handling. The issue arises from a user-triggerable warning that can be easily activated by modifying CPUID values after loading the CR3 register, which is part of the state management for virtual CPUs. This vulnerability has been addressed by removing the warning, as it did not provide meaningful protection or benefit to userspace, and could potentially disrupt normal operations.

Impact

Exploitation of this vulnerability could lead to unnecessary warnings being generated, which may indicate a problem that could be misinterpreted as an error or issue in the system.

Reproduction

The vulnerability can be reproduced by running a modified version of the KVM state restoration self-test. This involves creating a virtual CPU, loading its state, and then altering the CPUID properties before restoring the state again. The specific change includes setting the CR3 register to a value that triggers the warning, thereby demonstrating how easily the issue can be activated from userspace.

Remediation

No specific remediation is required, as the vulnerability has already been addressed in the Linux kernel stable tree.