CVE-2023-4155

Опубликовано: 13 сент. 2023

Источник: nvd

CVSS3: 5.3

CVSS3: 5.6

EPSS Низкий

Описание

A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the VMGEXIT handler recursively. If an attacker manages to call the handler multiple times, they can trigger a stack overflow and cause a denial of service or potentially guest-to-host escape in kernel configurations without stack guard pages (CONFIG_VMAP_STACK).

Ссылки

https://access.redhat.com/security/cve/CVE-2023-4155
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2213802
Issue Tracking
Patch
Third Party Advisory
https://access.redhat.com/security/cve/CVE-2023-4155
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2213802
Issue Tracking
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*

EPSS

Процентиль: 0%

0.00008

Низкий

5.3 Medium

CVSS3

5.6 Medium

CVSS3

Дефекты

CWE-367

Связанные уязвимости

CVE-2023-4155

CVSS3: 5.3

ubuntu

почти 2 года назад

A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the `VMGEXIT` handler recursively. If an attacker manages to call the handler multiple times, they can trigger a stack overflow and cause a denial of service or potentially guest-to-host escape in kernel configurations without stack guard pages (`CONFIG_VMAP_STACK`).

CVE-2023-4155

CVSS3: 5.3

redhat

почти 2 года назад

A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the `VMGEXIT` handler recursively. If an attacker manages to call the handler multiple times, they can trigger a stack overflow and cause a denial of service or potentially guest-to-host escape in kernel configurations without stack guard pages (`CONFIG_VMAP_STACK`).

CVE-2023-4155

CVSS3: 5.6

msrc

почти 2 года назад

Описание отсутствует

CVE-2023-4155

CVSS3: 5.3

debian

почти 2 года назад

A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in t ...

GHSA-7f5q-x8vx-pfrp

CVSS3: 5.3

github

почти 2 года назад

A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the `VMGEXIT` handler recursively. If an attacker manages to call the handler multiple times, they can trigger a stack overflow and cause a denial of service or potentially guest-to-host escape in kernel configurations without stack guard pages (`CONFIG_VMAP_STACK`).

EPSS

Процентиль: 0%

0.00008

Низкий

5.3 Medium

CVSS3

5.6 Medium

CVSS3

Дефекты

CWE-367