Vulnerability Details : CVE-2021-47110

In the Linux kernel, the following vulnerability has been resolved: x86/kvm: Disable kvmclock on all CPUs on shutdown Currenly, we disable kvmclock from machine_shutdown() hook and this only happens for boot CPU. We need to disable it for all CPUs to guard against memory corruption e.g. on restore from hibernate. Note, writing '0' to kvmclock MSR doesn't clear memory location, it just prevents hypervisor from updating the location so for the short while after write and while CPU is still alive, the clock remains usable and correct so we don't need to switch to some other clocksource.
Published 2024-03-15 21:15:07
Updated 2025-03-13 19:36:23
Source Linux
View at NVD,   CVE.org
Vulnerability category: Memory Corruption

Products affected by CVE-2021-47110

Exploit prediction scoring system (EPSS) score for CVE-2021-47110

EPSS FAQ
0.01%
Probability of exploitation activity in the next 30 days EPSS Score History
~ 1 %
Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2021-47110

Base Score Base Severity CVSS Vector Exploitability Score Impact Score Score Source First Seen
7.1
 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
1.8
5.2
 NIST 2025-03-13

CWE ids for CVE-2021-47110

  • The product does not properly "clean up" and remove temporary or supporting resources after they have been used.
    Assigned by: nvd@nist.gov (Primary)

References for CVE-2021-47110

Jump to
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close