CVE-2018-1087

EPSS 0.04%
Published 15.05.2018 16:29:00
Last modified 21.11.2024 03:59:09
Source secalert@redhat.com
Teams watchlist Login
Open Login

kernel KVM before versions kernel 4.16, kernel 4.16-rc7, kernel 4.17-rc1, kernel 4.17-rc2 and kernel 4.17-rc3 is vulnerable to a flaw in the way the Linux kernel's KVM hypervisor handled exceptions delivered after a stack switch operation via Mov SS or Pop SS instructions. During the stack switch operation, the processor did not deliver interrupts and exceptions, rather they are delivered once the first instruction after the stack switch is executed. An unprivileged KVM guest user could use this flaw to crash the guest or, potentially, escalate their privileges in the guest.

Affected products Warnungen 0 Metrics 4 CWE 1 References 17

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version4.16

Linux ≫ Linux Kernel Version4.16 Updaterc7

Linux ≫ Linux Kernel Version4.17 Updaterc1

Linux ≫ Linux Kernel Version4.17 Updaterc2

Linux ≫ Linux Kernel Version4.17 Updaterc3

Canonical ≫ Ubuntu Linux Version14.04 SwEditionlts

Canonical ≫ Ubuntu Linux Version16.04 SwEditionlts

Canonical ≫ Ubuntu Linux Version17.10

Debian ≫ Debian Linux Version8.0

Debian ≫ Debian Linux Version9.0

Redhat ≫ Enterprise Linux Version7.0

Redhat ≫ Enterprise Linux Desktop Version7.0

Redhat ≫ Enterprise Linux Server Version7.0

Redhat ≫ Enterprise Linux Server Aus Version7.2

Redhat ≫ Enterprise Linux Server Aus Version7.3

Redhat ≫ Enterprise Linux Server Aus Version7.4

Redhat ≫ Enterprise Linux Server Eus Version7.3

Redhat ≫ Enterprise Linux Server Eus Version7.4

Redhat ≫ Enterprise Linux Server Eus Version7.5

Redhat ≫ Enterprise Linux Server Tus Version7.2

Redhat ≫ Enterprise Linux Server Tus Version7.3

Redhat ≫ Enterprise Linux Server Tus Version7.4

Redhat ≫ Enterprise Linux Virtualization Version4.0

Redhat ≫ Enterprise Linux Workstation Version7.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.109

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P
secalert@redhat.com	8	2.1	5.9	CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-250 Execution with Unnecessary Privileges

The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

https://access.redhat.com/errata/RHSA-2018:1318

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1355

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1524

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1345

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1347

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1348

Third Party Advisory