14 matches found
Privilege Escalation
KVM is vulnerable to privilege escalation vulnerability. A local attacker on the guest system can trigger a debug exception error in syscall emulation to gain elevated privileges on the guest system via the flawed Syscall Emulation Debugging component...
DEBIAN-CVE-2017-7518
A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exceptionDB being raised in the guest stack. A user/process inside a guest could use this flaw to...
Scientific Linux Security Update : kernel on SL7.x x86_64 (20180306)
Security Fixes : - Kernel: KVM: MMU potential stack buffer overrun during page walks CVE-2017-12188, Important - Kernel: KVM: debug exception via syscall emulation CVE-2017-7518, Moderate C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if...
Kernel: KVM: debug exception via syscall emulation
A flaw was found in the way the Linux KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exceptionDB being raised in the guest stack. A user/process inside a guest could use this flaw to potentially escalate their privileges insi...
Important: Red Hat Security Advisory: kernel security and bug fix update
An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
Important: Red Hat Security Advisory: kernel-rt security and bug fix update
An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Kernel: KVM: debug exception via syscall emulation
A flaw was found in the way the Linux KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exceptionDB being raised in the guest stack. A user/process inside a guest could use this flaw to potentially escalate their privileges insi...
UBUNTU-CVE-2017-7518
A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exceptionDB being raised in the guest stack. A user/process inside a guest could use this flaw to...
DEBIAN-CVE-2016-10013
Xen through 4.8.x allows local 64-bit x86 HVM guest OS users to gain privileges by leveraging mishandling of SYSCALL singlestep during emulation...
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2012-2003)
The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-2003 advisory. - fs xfs: Fix possible memory corruption in xfsreadlink Carlos Maiolino CVE-2011-4077 - crypto: ghash - Avoid null pointer dereference if no key is...
Oracle Linux 6 : kernel (ELSA-2012-0350)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0350 advisory. - fs xfs: Fix missing xfsiunlock on error recovery path in xfsreadlink Carlos Maiolino 749161 694702 CVE-2011-4077 - fs xfs: Fix memory corruption in...
Ubuntu Update for linux-source-2.6.15/17/20 vulnerabilities USN-518-1
Ubuntu Update for Linux kernel vulnerabilities USN-518-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5181.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for linux-source-2.6.15/17/20 vulnerabilities USN-518-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH...
64-bit Linux kernel privilege escalation
Insufficient registry access validation on 32-bit syscalls emulation...
CVE-2005-0969
Heap-based buffer overflow in the syscall emulation functionality in Mac OS X before 10.3.9 allows local users to cause a denial of service kernel panic and possibly execute arbitrary code via crafted parameters...