CVE-2018-1087

kernel KVM before versions kernel 4.16, kernel 4.16-rc7, kernel 4.17-rc1, kernel 4.17-rc2 and kernel 4.17-rc3 is vulnerable to a flaw in the way the Linux kernel's KVM hypervisor handled exceptions delivered after a stack switch operation via Mov SS or Pop SS instructions. During the stack switch operation, the processor did not deliver interrupts and exceptions, rather they are delivered once the first instruction after the stack switch is executed. An unprivileged KVM guest user could use this flaw to crash the guest or, potentially, escalate their privileges in the guest.

Published : 2018-05-15 16:29 Updated : 2019-10-09 23:38

4.6
CVSS Score More info
Score 4.6 / 10
4.6
Vendor Product Version URI
Canonical Ubuntu Linux 14.04 cpe:/o:canonical:ubuntu_linux:14.04::~~lts~~~
Canonical Ubuntu Linux 16.04 cpe:/o:canonical:ubuntu_linux:16.04::~~lts~~~
Canonical Ubuntu Linux 17.10 cpe:/o:canonical:ubuntu_linux:17.10
Debian Debian Linux 8.0 cpe:/o:debian:debian_linux:8.0
Debian Debian Linux 9.0 cpe:/o:debian:debian_linux:9.0
Linux Linux Kernel 4.16 cpe:/o:linux:linux_kernel:4.16
Linux Linux Kernel 4.16 cpe:/o:linux:linux_kernel:4.16:rc7
Linux Linux Kernel 4.17 cpe:/o:linux:linux_kernel:4.17:rc1
Linux Linux Kernel 4.17 cpe:/o:linux:linux_kernel:4.17:rc2
Linux Linux Kernel 4.17 cpe:/o:linux:linux_kernel:4.17:rc3
Redhat Enterprise Linux 7.0 cpe:/o:redhat:enterprise_linux:7.0
Redhat Enterprise Linux Desktop 7.0 cpe:/o:redhat:enterprise_linux_desktop:7.0
Redhat Enterprise Linux Server 7.0 cpe:/o:redhat:enterprise_linux_server:7.0
Redhat Enterprise Linux Server Aus 7.2 cpe:/o:redhat:enterprise_linux_server_aus:7.2
Redhat Enterprise Linux Server Aus 7.3 cpe:/o:redhat:enterprise_linux_server_aus:7.3
Redhat Enterprise Linux Server Aus 7.4 cpe:/o:redhat:enterprise_linux_server_aus:7.4
Redhat Enterprise Linux Server Eus 7.3 cpe:/o:redhat:enterprise_linux_server_eus:7.3
Redhat Enterprise Linux Server Eus 7.4 cpe:/o:redhat:enterprise_linux_server_eus:7.4
Redhat Enterprise Linux Server Eus 7.5 cpe:/o:redhat:enterprise_linux_server_eus:7.5
Redhat Enterprise Linux Server Tus 7.2 cpe:/o:redhat:enterprise_linux_server_tus:7.2
Redhat Enterprise Linux Server Tus 7.3 cpe:/o:redhat:enterprise_linux_server_tus:7.3
Redhat Enterprise Linux Server Tus 7.4 cpe:/o:redhat:enterprise_linux_server_tus:7.4
Redhat Enterprise Linux Virtualization 4.0 cpe:/o:redhat:enterprise_linux_virtualization:4.0
Redhat Enterprise Linux Workstation 7.0 cpe:/o:redhat:enterprise_linux_workstation:7.0
  1. Debian (1) Search CVE
    1. Debian Linux (2) Search CVE
      1. 8.0
      2. 9.0
  2. Linux (1) Search CVE
    1. Linux Kernel (2) Search CVE
      1. 4.16
      2. 4.17
  3. Canonical (1) Search CVE
    1. Ubuntu Linux (3) Search CVE
      1. 14.04
      2. 16.04
      3. 17.10
  4. Redhat (8) Search CVE
    1. Enterprise Linux (1) Search CVE
      1. 7.0
    2. Enterprise Linux Workstation (1) Search CVE
      1. 7.0
    3. Enterprise Linux Server Tus (3) Search CVE
      1. 7.2
      2. 7.3
      3. 7.4
    4. Enterprise Linux Server (1) Search CVE
      1. 7.0
    5. Enterprise Linux Desktop (1) Search CVE
      1. 7.0
    6. Enterprise Linux Server Aus (3) Search CVE
      1. 7.2
      2. 7.3
      3. 7.4
    7. Enterprise Linux Virtualization (1) Search CVE
      1. 4.0
    8. Enterprise Linux Server Eus (3) Search CVE
      1. 7.3
      2. 7.4
      3. 7.5

CWE

There is no CWE for this CVE.

History of changes

Date Event
2019-10-03 00:03
2018-06-19 18:25
2018-05-30 01:29
2018-05-17 01:29
2018-05-15 16:29

New CVE