Published: 02/03/2015 Updated: 13/02/2023

CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4

VMScore: 393

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

The em_sysenter function in arch/x86/kvm/emulate.c in the Linux kernel prior to 3.18.5, when the guest OS lacks SYSENTER MSR initialization, allows guest OS users to gain guest OS privileges or cause a denial of service (guest OS crash) by triggering use of a 16-bit code segment for emulation of a SYSENTER instruction.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
canonical ubuntu linux 12.04
canonical ubuntu linux 14.10
canonical ubuntu linux 14.04
debian debian linux 8.0
debian debian linux 7.0
oracle linux 5
oracle linux 7
redhat enterprise linux desktop 6.0
redhat enterprise linux server 6.0
redhat enterprise linux workstation 6.0

Synopsis Important: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix multiple security issues, address severalhundred bugs, and add numerous enhancements are now available as part ofthe ongoing support and maintenance of Red H ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, information leaks or privilege escalation CVE-2013-7421 / CVE-2014-9644 It was discovered that the Crypto API allowed unprivileged users to load arbitrary kernel modules A local user can use this flaw to exploit vulnerabilities ...

USN-2516-1 introduced a regression in the Linux kernel ...

Several security issues were fixed in the kernel ...

USN-2516-1 introduced a regression in the Linux kernel ...

Several security issues were fixed in the kernel ...

USN-2515-1 introduced a regression in the Linux kernel ...

Several security issues were fixed in the kernel ...

It was found that the Linux kernel KVM subsystem's sysenter instruction emulation was not sufficient An unprivileged guest user could use this flaw to escalate their privileges by tricking the hypervisor to emulate a SYSENTER instruction in 16-bit mode, if the guest OS did not initialize the SYSENTER model-specific registers (MSRs) Note: Certifie ...

CWE-269 http://permalink.gmane.org/gmane.linux.kernel.commits.head/502245 https://github.com/torvalds/linux/commit/f3747379accba8e95d70cec0eae0582c8c182050 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.5 http://www.openwall.com/lists/oss-security/2015/01/27/6 https://bugzilla.redhat.com/show_bug.cgi?id=1186448 http://www.ubuntu.com/usn/USN-2518-1 http://www.ubuntu.com/usn/USN-2515-1 http://www.ubuntu.com/usn/USN-2516-1 http://www.ubuntu.com/usn/USN-2517-1 http://www.securityfocus.com/bid/72842 http://www.ubuntu.com/usn/USN-2514-1 http://www.ubuntu.com/usn/USN-2513-1 http://www.debian.org/security/2015/dsa-3170 http://www.mandriva.com/security/advisories?name=MDVSA-2015:058 http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html http://rhn.redhat.com/errata/RHSA-2015-1272.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f3747379accba8e95d70cec0eae0582c8c182050 https://access.redhat.com/errata/RHSA-2015:2152 https://nvd.nist.gov https://usn.ubuntu.com/2516-3/https://access.redhat.com/security/cve/cve-2015-0239 https://www.debian.org/security/./dsa-3170

CVE-2015-0239

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect