Описание
The load_segment_descriptor implementation in arch/x86/kvm/emulate.c in the Linux kernel before 4.9.5 improperly emulates a "MOV SS, NULL selector" instruction, which allows guest OS users to cause a denial of service (guest OS crash) or gain guest OS privileges via a crafted application.
Ссылки
- Issue TrackingThird Party Advisory
- Release NotesVendor Advisory
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- Issue TrackingPatch
- Issue TrackingPatchThird Party Advisory
- Issue TrackingThird Party Advisory
- Release NotesVendor Advisory
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- Issue TrackingPatch
- Issue TrackingPatchThird Party Advisory
Уязвимые конфигурации
EPSS
8.4 High
CVSS3
4.6 Medium
CVSS2
Дефекты
Связанные уязвимости
The load_segment_descriptor implementation in arch/x86/kvm/emulate.c in the Linux kernel before 4.9.5 improperly emulates a "MOV SS, NULL selector" instruction, which allows guest OS users to cause a denial of service (guest OS crash) or gain guest OS privileges via a crafted application.
The load_segment_descriptor implementation in arch/x86/kvm/emulate.c in the Linux kernel before 4.9.5 improperly emulates a "MOV SS, NULL selector" instruction, which allows guest OS users to cause a denial of service (guest OS crash) or gain guest OS privileges via a crafted application.
The load_segment_descriptor implementation in arch/x86/kvm/emulate.c i ...
The load_segment_descriptor implementation in arch/x86/kvm/emulate.c in the Linux kernel before 4.9.5 improperly emulates a "MOV SS, NULL selector" instruction, which allows guest OS users to cause a denial of service (guest OS crash) or gain guest OS privileges via a crafted application.
Уязвимость операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
8.4 High
CVSS3
4.6 Medium
CVSS2