It exists that the KVM implementation in the Linux kernel, when paravirtual TLB flushes are enabled in guests, the hypervisor in some situations could miss deferred TLB flushes or otherwise mishandle them. An attacker in a guest VM could use this to expose sensitive information (read memory from another guest VM). (CVE-2019-3016)
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel 4.10 |
||
linux linux kernel |