4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
45.5%
The instruction decoder in arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel before 3.18-rc2 lacks intended decoder-table flags for certain RIP-relative instructions, which allows guest OS users to cause a denial of service (NULL pointer dereference and host OS crash) via a crafted application.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | linux | <Â 6.1.76-1 | linux_6.1.76-1_all.deb |
Debian | 11 | all | linux | <Â 5.10.209-2 | linux_5.10.209-2_all.deb |
Debian | 10 | all | linux | <Â 4.19.249-2 | linux_4.19.249-2_all.deb |
Debian | 999 | all | linux | <Â 6.7.9-2 | linux_6.7.9-2_all.deb |
Debian | 13 | all | linux | <Â 6.6.15-2 | linux_6.6.15-2_all.deb |