Linux Kernel up to 4.13.3 CR8 arch/x86/kvm/vmx.c prepare_vmcs02 access control

entryeditHistoryDiffjsonxmlCTI

A vulnerability has been found in Linux Kernel up to 4.13.3 (Operating System) and classified as critical. Affected by this vulnerability is the function prepare_vmcs02 of the file arch/x86/kvm/vmx.c of the component CR8 Handler. Applying a patch is able to eliminate this problem. The bugfix is ready for download at git.kernel.org. A possible mitigation has been published before and not just after the disclosure of the vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1082001401/14/2021VulD...cvss2_nvd_basescore3.6nist.gov01/14/2021accepted90
1082001301/14/2021VulD...person_nameJim Mattsonsecurityfocus.com01/14/2021accepted70
713934611/19/2019VulD...securityfocus_classFailure to Handle Exceptional Conditionssecurityfocus.com11/19/2019accepted100
713934511/19/2019VulD...securityfocus_date1505174400 (09/12/2017)securityfocus.com11/19/2019accepted100
713933711/19/2019VulD...date1505865600 (09/20/2017)11/19/2019accepted100
713933411/19/2019VulD...confirm_urlhttp://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=51aa68e7d57e3217192d88ce90fd5b8ef29ec94fgit.kernel.org11/19/2019accepted100
713933311/19/2019VulD...company_nameGoogle11/19/2019accepted100
713933211/19/2019VulD...person_nicknameMatt11/19/2019accepted100
713929111/19/2019VulD...discoverydate150543360011/19/2019accepted100
713937009/26/2017VulD...cvss3_nvd_basescore7.1nist.gov09/26/2017accepted90
713936909/26/2017VulD...0day_days509/26/2017accepted90
713936809/26/2017VulD...cvss3_vuldb_rcC09/26/2017accepted90
713936709/26/2017VulD...cvss3_vuldb_rlO09/26/2017accepted90
713936609/26/2017VulD...cvss3_vuldb_eX09/26/2017accepted90
713936509/26/2017VulD...cvss2_vuldb_rcC09/26/2017accepted90
713936409/26/2017VulD...cvss2_vuldb_rlOF09/26/2017accepted90
713936309/26/2017VulD...cvss2_vuldb_eND09/26/2017accepted90
713936109/26/2017VulD...seealso102802 103034 104449 104864 105193 105278 105605 105607 105731 106083 106127 106121 106273 106733 106736 106930 107472 109137 109138 11167309/26/2017accepted100
713936009/26/2017VulD...qualys_titleAmazon Linux Security Advisory for kernel: ALAC2012-2018-013qualys.com09/26/2017accepted100

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!