Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2020-36310

Опубликовано: 21 апр. 2020
Источник: redhat
CVSS3: 0
EPSS Низкий

Описание

An issue was discovered in the Linux kernel before 5.8. arch/x86/kvm/svm/svm.c allows a set_memory_region_test infinite loop for certain nested page faults, aka CID-e72436bc3a52.

A flaw was found in the Linux kernel. A nested page fault is created when an address does not have a memslot associated to it. The highest threat from this vulnerability is to system availability. This flaw can be triggered using a malformed Virtual Machine. When triggered this bug will lead to the user-space component of KVM to freeze.

Отчет

Red Hat Product Security does not consider this to be a vulnerability. This issue has addressed as a regular bug in the errata RHSA-2021:2185 and RHSA-2021:1578. There is an agreement between the upstream maintainer and the vendor representative that this should be considered a bug instead of a security issue.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise Linux 6kernelUnder investigation
Red Hat Enterprise Linux 7kernelUnder investigation
Red Hat Enterprise Linux 7kernel-altUnder investigation
Red Hat Enterprise Linux 7kernel-rtUnder investigation
Red Hat Enterprise Linux 8kernelUnder investigation
Red Hat Enterprise Linux 8kernel-rtUnder investigation
Red Hat Enterprise Linux 9kernelUnder investigation

Показывать по

Ссылки на источники

Дополнительная информация

Дефект:
CWE-835
https://bugzilla.redhat.com/show_bug.cgi?id=1947982kernel: infinite loop in set_memory_region_test in arch/x86/kvm/svm/svm.c for certain nested page faults

EPSS

Процентиль: 30%
0.00109
Низкий

0 Low

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2020-36310

CVSS3: 5.5
ubuntu
около 4 лет назад

An issue was discovered in the Linux kernel before 5.8. arch/x86/kvm/svm/svm.c allows a set_memory_region_test infinite loop for certain nested page faults, aka CID-e72436bc3a52.

nvd логотип

CVE-2020-36310

CVSS3: 5.5
nvd
около 4 лет назад

An issue was discovered in the Linux kernel before 5.8. arch/x86/kvm/svm/svm.c allows a set_memory_region_test infinite loop for certain nested page faults, aka CID-e72436bc3a52.

debian логотип

CVE-2020-36310

CVSS3: 5.5
debian
около 4 лет назад

An issue was discovered in the Linux kernel before 5.8. arch/x86/kvm/s ...

github логотип

GHSA-jhhp-vmj5-g65v

CVSS3: 5.5
github
около 3 лет назад

An issue was discovered in the Linux kernel before 5.8. arch/x86/kvm/svm/svm.c allows a set_memory_region_test infinite loop for certain nested page faults, aka CID-e72436bc3a52.

fstec логотип

BDU:2021-01954

CVSS3: 5.5
fstec
около 4 лет назад

Уязвимость функции set_memory_region_test (arch/x86/kvm/svm/svm.c) ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 30%
0.00109
Низкий

0 Low

CVSS3