8

CVE-2018-1087

kernel KVM before versions kernel 4.16, kernel 4.16-rc7, kernel 4.17-rc1, kernel 4.17-rc2 and kernel 4.17-rc3 is vulnerable to a flaw in the way the Linux kernel's KVM hypervisor handled exceptions delivered after a stack switch operation via Mov SS or Pop SS instructions. During the stack switch operation, the processor did not deliver interrupts and exceptions, rather they are delivered once the first instruction after the stack switch is executed. An unprivileged KVM guest user could use this flaw to crash the guest or, potentially, escalate their privileges in the guest.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version4.16
LinuxLinux Kernel Version4.16 Updaterc7
LinuxLinux Kernel Version4.17 Updaterc1
LinuxLinux Kernel Version4.17 Updaterc2
LinuxLinux Kernel Version4.17 Updaterc3
CanonicalUbuntu Linux Version14.04 SwEditionlts
CanonicalUbuntu Linux Version16.04 SwEditionlts
CanonicalUbuntu Linux Version17.10
DebianDebian Linux Version8.0
DebianDebian Linux Version9.0
RedhatEnterprise Linux Version7.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.77% 0.509
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
secalert@redhat.com 8 2.1 5.9
CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-250 Execution with Unnecessary Privileges

The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

https://access.redhat.com/errata/RHSA-2018:1318
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:1355
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:1524
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:1345
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:1347
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:1348
Third Party Advisory
https://usn.ubuntu.com/3641-1/
Third Party Advisory
https://usn.ubuntu.com/3641-2/
Third Party Advisory
https://www.debian.org/security/2018/dsa-4196
Third Party Advisory
http://www.openwall.com/lists/oss-security/2018/05/08/5
Mailing List
http://www.securityfocus.com/bid/104127
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1040862
Third Party Advisory
VDB Entry
https://access.redhat.com/security/vulnerabilities/pop_ss
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1087
Issue Tracking