Published: 30/07/2018 Updated: 07/11/2023

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(#DB) being raised in the guest stack. A user/process inside a guest could use this flaw to potentially escalate their privileges inside the guest. Linux guests are not affected by this.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat enterprise linux desktop 7.0
redhat enterprise linux workstation 7.0
redhat enterprise linux 7.0
redhat enterprise linux server 7.0
redhat enterprise linux server aus 7.4
redhat enterprise linux server eus 7.4
redhat enterprise linux server eus 7.5
debian debian linux 8.0
canonical ubuntu linux 16.04
canonical ubuntu linux 14.04
debian debian linux 9.0
linux linux kernel

Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) b ...

Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (C ...

Debian Bug report logs - #875881 linux: CVE-2017-1000251 Package: src:linux; Maintainer for src:linux is Debian Kernel Team <debian-kernel@listsdebianorg>; Reported by: Christoph Anton Mitterer <calestyo@scientianet> Date: Fri, 15 Sep 2017 14:42:01 UTC Severity: critical Tags: confirmed, fixed-upstream, security, ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to privilege escalation, denial of service or information leaks CVE-2017-7518 Andy Lutomirski discovered that KVM is prone to an incorrect debug exception (#DB) error occurring while emulating a syscall instruction A process inside a guest can take advanta ...

Several security issues were fixed in the Linux kernel ...

A flaw was found in the way the Linux KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(#DB) being raised in the guest stack A user/process inside a guest could use this flaw to potentially escalate their privileges inside the guest Linux guests are not affected by ...

CWE-755 https://www.spinics.net/lists/kvm/msg151817.html https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7518 https://access.redhat.com/articles/3290921 http://www.openwall.com/lists/oss-security/2017/06/23/5 https://www.debian.org/security/2017/dsa-3981 https://usn.ubuntu.com/3619-2/https://usn.ubuntu.com/3619-1/https://access.redhat.com/errata/RHSA-2018:0412 https://access.redhat.com/errata/RHSA-2018:0395 http://www.securitytracker.com/id/1038782 http://www.securityfocus.com/bid/99263 https://usn.ubuntu.com/3754-1/https://access.redhat.com/errata/RHSA-2018:0395 https://nvd.nist.gov https://usn.ubuntu.com/3619-2/https://www.debian.org/security/./dsa-3981

CVE-2017-7518

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect