CVE-2017-1000252

Description

The KVM subsystem in the Linux kernel through 4.13.3 allows guest OS users to cause a denial of service (assertion failure, and hypervisor hang or crash) via an out-of bounds guest_irq value, related to arch/x86/kvm/vmx.c and virt/kvm/eventfd.c.

CVSS Metrics

• v3.0•MEDIUM•Score: 5.5CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
• v2.0•LOW•Score: 2.1AV:L/AC:L/Au:N/C:N/I:N/A:P

EPSS Trends

Current EPSS score: 0.08%• Percentile: 24%

Techniques & Countermeasures

• CWE-20•Improper Input Validation

  The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

• CWE-617•Reachable Assertion

  The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

Affected Systems

• linux•linux_kernel

  ≤ 4.13.3

References (13)

• http://www.securityfocus.com/bid/101022
• http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=36ae3c0a36b7456432fedce38ae2f7bd3e01a563
• https://github.com/torvalds/linux/commit/3a8b0677fc6180a467e26cc32ce6b0c09a32f9bb
• https://access.redhat.com/errata/RHSA-2018:1062
• http://www.debian.org/security/2017/dsa-3981
• https://marc.info/?l=kvm&m=150549146311117&w=2
• https://access.redhat.com/errata/RHSA-2018:0676
• https://github.com/torvalds/linux/commit/36ae3c0a36b7456432fedce38ae2f7bd3e01a563
• https://marc.info/?l=kvm&m=150549145711115&w=2
• https://access.redhat.com/errata/RHSA-2018:1130
• http://www.openwall.com/lists/oss-security/2017/09/15/4
• https://bugzilla.redhat.com/show_bug.cgi?id=1490781
• http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=3a8b0677fc6180a467e26cc32ce6b0c09a32f9bb