A flaw was found in the way Linux kernel KVM hypervisor prior to 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilege(CPL) level while emulating unprivileged instructions. An unprivileged guest user/process could use this flaw to potentially escalate privileges inside guest.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
canonical ubuntu linux 18.04 |
||
canonical ubuntu linux 16.04 |
||
debian debian linux 8.0 |
||
linux linux kernel |