Published: 08/04/2020 Updated: 10/06/2020

CVSS v2 Base Score: 2.3 | Impact Score: 2.9 | Exploitability Score: 4.4

CVSS v3 Base Score: 6.8 | Impact Score: 4 | Exploitability Score: 2.3

VMScore: 205

Vector: AV:A/AC:M/Au:S/C:P/I:N/A:N

A flaw exists in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstances, an L2 guest may trick the L0 guest into accessing sensitive L1 resources that should be inaccessible to the L2 guest.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat enterprise linux 7.0
redhat enterprise linux 8.0

Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (C ...

Synopsis Important: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring S ...

Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) b ...

Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (C ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service, or information leak CVE-2020-2732 Paulo Bonzini discovered that the KVM implementation for Intel processors did not properly handle instruction emulation for L2 guests when nested virtualization is enabled This ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2019-2182 Hanjun Guo and Lei Li reported a race condition in the arm64 virtual memory management code, which could lead to an information disclosure, denial of service (crash), or possibl ...

The system could be made to expose sensitive information ...

Several security issues were fixed in the Linux kernel ...

A flaw was found in the way KVM hypervisor handled instruction emulation for the L2 guest when nested(=1) virtualization is enabled In the instruction emulation, the L2 guest could trick the L0 hypervisor into accessing sensitive bits of the L1 hypervisor An L2 guest could use this flaw to potentially access information of the L1 hypervisor (CVE ...

There is a use-after-free vulnerability in the Linux kernel through 552 in the n_tty_receive_buf_common function in drivers/tty/n_ttyc (CVE-2020-8648) A flaw was found in the way KVM hypervisor handled instruction emulation for the L2 guest when nested(=1) virtualization is enabled In the instruction emulation, the L2 guest could trick the L0 ...

vmx_check_intercept ws not yet fully implemented by KVM on Intel processors, causing eg the I/O or MSR interception bitmaps not to be checked this in turn allowed the L2 guest to trick the L0 hypervisor into accessing sensitive information on the L1 hypervisor ...

oss-sec mailing list archives   By Date By Thread </form>    Re: CVE-2020-2732: Nested VMX vulnerability   From: P J P <ppandit () ...

CWE-200 https://www.spinics.net/lists/kvm/msg208259.html https://linux.oracle.com/errata/ELSA-2020-5540.html https://linux.oracle.com/errata/ELSA-2020-5542.html https://www.openwall.com/lists/oss-security/2020/02/25/3 https://git.kernel.org/linus/35a571346a94fb93b5b3b6a599675ef3384bc75c https://bugzilla.redhat.com/show_bug.cgi?id=1805135 https://linux.oracle.com/errata/ELSA-2020-5543.html https://git.kernel.org/linus/07721feee46b4b248402133228235318199b05ec https://git.kernel.org/linus/e71237d3ff1abf9f3388337cfebf53b96df2020d https://www.debian.org/security/2020/dsa-4667 https://lists.debian.org/debian-lts-announce/2020/06/msg00011.html https://lists.debian.org/debian-lts-announce/2020/06/msg00013.html https://lists.debian.org/debian-lts-announce/2020/06/msg00012.html https://www.debian.org/security/2020/dsa-4698 https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2020:4062 https://usn.ubuntu.com/4303-2/https://www.debian.org/security/2020/dsa-4667

Get Started

CVE-2020-2732

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Mailing Lists

References

Vulmon Search

About

Products

Connect