Hello,
I'm investigating if v5.15 and early versions are vulnerable to the following
CVEs. Could you please help confirm the following cases?
For CVE-2024-36912, the suggested fix is 211f514ebf1e ("Drivers: hv: vmbus:
Track decrypted status in vmbus_gpadl") according to
https://www.cve.org/CVERecord?id=CVE-2024-36912
It seems 211f514ebf1e is based on d4dccf353db8 ("Drivers: hv: vmbus: Mark vmbus
ring buffer visible to host in Isolation VM") which was introduced since v5.16.
For v5.15 and early versions, vmbus ring buffer hadn't been made visible to
host, so there's no need to backport 211f514ebf1e to those versions, right?
For CVE-2024-36913, the suggested fix is 03f5a999adba ("Drivers: hv: vmbus:
Leak pages if set_memory_encrypted() fails") according to
https://www.cve.org/CVERecord?id=CVE-2024-36913
It seems 03f5a999adba is based on f2f136c05fb6 ("Drivers: hv: vmbus: Add SNP
support for VMbus channel initiate message") which was introduced since v5.16.
For v5.15 and early verions, monitor pages hadn't been made visible to host, so
there's no need to backport 03f5a999adba to those versions, right?
Thanks,
Zhe
