CVE 2017-12154
The prepare_vmcs02 function in arch/x86/kvm/vmx.c in the Linux kernel through 4.13.3 does not ensure that the "CR8-load exiting" and "CR8-store exiting" L0 vmcs02 controls exist in cases where L1 omits the "use TPR shadow" vmcs12 control, which allows KVM L2 guest OS users to obtain read and write access to the hardware CR8 register.
Related bugs and status
CVE-2017-12154 (Candidate) is related to these bugs:
Bug #1771480: WARNING: CPU: 28 PID: 34085 at /build/linux-90Gc2C/linux-3.13.0/net/core/dev.c:1433 dev_disable_lro+0x87/0x90()
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1771480 | WARNING: CPU: 28 PID: 34085 at /build/linux-90Gc2C/linux-3.13.0/net/core/dev.c:1433 dev_disable_lro+0x87/0x90() | linux (Ubuntu) | Medium | Fix Released | ||
1771480 | WARNING: CPU: 28 PID: 34085 at /build/linux-90Gc2C/linux-3.13.0/net/core/dev.c:1433 dev_disable_lro+0x87/0x90() | linux (Ubuntu Trusty) | Medium | Fix Released |
Bug #1774336: FS-Cache: Assertion failed: FS-Cache: 6 == 5 is false
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1774336 | FS-Cache: Assertion failed: FS-Cache: 6 == 5 is false | linux (Ubuntu) | Undecided | Fix Released | ||
1774336 | FS-Cache: Assertion failed: FS-Cache: 6 == 5 is false | linux (Ubuntu Artful) | Undecided | Fix Released | ||
1774336 | FS-Cache: Assertion failed: FS-Cache: 6 == 5 is false | linux (Ubuntu Bionic) | Undecided | Fix Released | ||
1774336 | FS-Cache: Assertion failed: FS-Cache: 6 == 5 is false | linux (Ubuntu Trusty) | Undecided | Fix Released | ||
1774336 | FS-Cache: Assertion failed: FS-Cache: 6 == 5 is false | linux (Ubuntu Xenial) | Undecided | Fix Released |
Bug #1775316: add_key04 in LTP syscall test cause kernel oops (NULL pointer dereference) with T kernel
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1775316 | add_key04 in LTP syscall test cause kernel oops (NULL pointer dereference) with T kernel | linux (Ubuntu) | Undecided | Fix Released | ||
1775316 | add_key04 in LTP syscall test cause kernel oops (NULL pointer dereference) with T kernel | ubuntu-kernel-tests | Undecided | Fix Released | ||
1775316 | add_key04 in LTP syscall test cause kernel oops (NULL pointer dereference) with T kernel | linux (Ubuntu Trusty) | Undecided | Fix Released |
Bug #1775856: register on binfmt_misc may overflow and crash the system
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1775856 | register on binfmt_misc may overflow and crash the system | linux (Ubuntu) | Undecided | Fix Released | ||
1775856 | register on binfmt_misc may overflow and crash the system | linux (Ubuntu Bionic) | Undecided | Fix Released | ||
1775856 | register on binfmt_misc may overflow and crash the system | linux (Ubuntu Cosmic) | Undecided | Fix Released | ||
1775856 | register on binfmt_misc may overflow and crash the system | linux (Ubuntu Trusty) | Undecided | Fix Released | ||
1775856 | register on binfmt_misc may overflow and crash the system | linux (Ubuntu Precise) | Undecided | Won't Fix | ||
1775856 | register on binfmt_misc may overflow and crash the system | linux (Ubuntu Xenial) | Undecided | Fix Released | ||
1775856 | register on binfmt_misc may overflow and crash the system | linux (Ubuntu Artful) | Undecided | Fix Released |
Bug #1776350: linux: 3.13.0-152.202 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1776350 | linux: 3.13.0-152.202 -proposed tracker | linux (Ubuntu) | Undecided | Invalid | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | New | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | New | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | New | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | New | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | New | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | New | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | New | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Medium | Invalid | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | New | ||
1776350 | linux: 3.13.0-152.202 -proposed tracker | linux (Ubuntu Trusty) | Undecided | Fix Released |
Bug #1776819: linux: 3.13.0-153.203 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1776819 | linux: 3.13.0-153.203 -proposed tracker | linux (Ubuntu) | Undecided | Invalid | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | linux (Ubuntu Trusty) | Medium | Fix Released | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Fix Released | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Medium | Invalid | ||
1776819 | linux: 3.13.0-153.203 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released |
See the
CVE page on Mitre.org
for more details.