A vulnerability was found in kvm_s390_guest_sida_op in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel. This flaw allows a local attacker with a normal user privilege to obtain unauthorized memory write access.

Mitigation

As the kvm.ko kernel module will be auto-loaded when required, its use can be disabled by preventing the module from loading with the following instructions:

echo "install kvm /bin/true" >> /etc/modprobe.d/disable-kvm.conf

If the system requires this module to work correctly, this mitigation may not be suitable.

If you need further assistance, see the KCS article <https://access.redhat.com/solutions/41278&gt; or contact Red Hat Global Support Services.