Nadav Amit discovered that the hugetlb implementation in the Linux kernel did not perform TLB flushes under certain conditions. A local attacker could use this to leak or alter data from other processes that use huge pages.
{ "availability": "No subscription required", "binaries": [ { "linux-image-unsigned-5.14.0-1013-oem-dbgsym": "5.14.0-1013.13", "linux-tools-5.14.0-1013-oem": "5.14.0-1013.13", "linux-oem-5.14-tools-host": "5.14.0-1013.13", "linux-headers-5.14.0-1013-oem": "5.14.0-1013.13", "linux-modules-5.14.0-1013-oem": "5.14.0-1013.13", "linux-oem-5.14-headers-5.14.0-1013": "5.14.0-1013.13", "linux-image-unsigned-5.14.0-1013-oem": "5.14.0-1013.13", "linux-oem-5.14-tools-5.14.0-1013": "5.14.0-1013.13", "linux-buildinfo-5.14.0-1013-oem": "5.14.0-1013.13" } ] }