CVE-2021-47110

Published: Mar 15, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: x86/kvm: Disable kvmclock on all CPUs on shutdown Currenly, we disable kvmclock from machine_shutdown() hook and this only happens for boot CPU. We need to disable it for all CPUs to guard against memory corruption e.g. on restore from hibernate. Note, writing '0' to kvmclock MSR doesn't clear memory location, it just prevents hypervisor from updating the location so for the short while after write and while CPU is still alive, the clock remains usable and correct so we don't need to switch to some other clocksource.

Vendor	Product	Versions
Linux	Linux	affected `1e977aa12dd4f80688b1f243762212e75c6d7fe8 - < 9084fe1b3572664ad276f427dce575f580c9799a` affected `1e977aa12dd4f80688b1f243762212e75c6d7fe8 - < 3b0becf8b1ecf642a9edaf4c9628ffc641e490d6` affected `1e977aa12dd4f80688b1f243762212e75c6d7fe8 - < 1df2dc09926f61319116c80ee85701df33577d70` affected `1e977aa12dd4f80688b1f243762212e75c6d7fe8 - < c02027b5742b5aa804ef08a4a9db433295533046`
Linux	Linux	affected `2.6.26` unaffected `0 - < 2.6.26` unaffected `5.4.125 - <= 5.4.` unaffected `5.10.43 - <= 5.10.` unaffected `5.12.10 - <= 5.12.*` +1 more versions

References

https://git.kernel.org/stable/c/9084fe1b3572664ad276f427dce575f580c9799a

https://git.kernel.org/stable/c/3b0becf8b1ecf642a9edaf4c9628ffc641e490d6

https://git.kernel.org/stable/c/1df2dc09926f61319116c80ee85701df33577d70

https://git.kernel.org/stable/c/c02027b5742b5aa804ef08a4a9db433295533046

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-47110

Description

Affected Products

References