Описание
drivers/vfio/pci/vfio_pci_intrs.c in the Linux kernel through 4.8.11 misuses the kzalloc function, which allows local users to cause a denial of service (integer overflow) or have unspecified other impact by leveraging access to a vfio PCI device file.
Ссылки
- Issue TrackingPatchVendor Advisory
- Mailing ListThird Party Advisory
- Issue Tracking
- Issue TrackingPatchThird Party Advisory
- Patch
- Issue TrackingPatchVendor Advisory
- Mailing ListThird Party Advisory
- Issue Tracking
- Issue TrackingPatchThird Party Advisory
- Patch
Уязвимые конфигурации
EPSS
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
Связанные уязвимости
drivers/vfio/pci/vfio_pci_intrs.c in the Linux kernel through 4.8.11 misuses the kzalloc function, which allows local users to cause a denial of service (integer overflow) or have unspecified other impact by leveraging access to a vfio PCI device file.
drivers/vfio/pci/vfio_pci_intrs.c in the Linux kernel through 4.8.11 misuses the kzalloc function, which allows local users to cause a denial of service (integer overflow) or have unspecified other impact by leveraging access to a vfio PCI device file.
drivers/vfio/pci/vfio_pci_intrs.c in the Linux kernel through 4.8.11 m ...
drivers/vfio/pci/vfio_pci_intrs.c in the Linux kernel through 4.8.11 misuses the kzalloc function, which allows local users to cause a denial of service (integer overflow) or have unspecified other impact by leveraging access to a vfio PCI device file.
ELSA-2017-0386: kernel security, bug fix, and enhancement update (IMPORTANT)
EPSS
7.8 High
CVSS3
4.6 Medium
CVSS2