CVE-2018-12207

Description

Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host system via local access.

CVSS Metrics

• v3.1•MEDIUM•Score: 6.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
• v2.0•MEDIUM•Score: 4.9AV:L/AC:L/Au:N/C:N/I:N/A:C

EPSS Trends

Current EPSS score: 0.26%• Percentile: 50%

Techniques & Countermeasures

• CWE-20•Improper Input Validation

  The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Affected Systems

• canonical•ubuntu_linux

  14.04

• debian•debian_linux

  9.0

• f5•big-ip_access_policy_manager

  ≥ 11.5.2, ≤ 11.6.5 | ≥ 12.1.0, ≤ 12.1.5 | ≥ 13.1.0, ≤ 13.1.3 | ≥ 14.1.0, ≤ 14.1.2 | ≥ 15.0.0, ≤ 15.0.1

• f5•big-ip_advanced_firewall_manager

  ≥ 11.5.2, ≤ 11.6.5 | ≥ 12.1.0, ≤ 12.1.5 | ≥ 13.1.0, ≤ 13.1.3 | ≥ 14.1.0, ≤ 14.1.2 | ≥ 15.0.0, ≤ 15.0.1

• f5•big-ip_analytics

  ≥ 11.5.2, ≤ 11.6.5 | ≥ 12.1.0, ≤ 12.1.5 | ≥ 13.1.0, ≤ 13.1.3 | ≥ 14.1.0, ≤ 14.1.2 | ≥ 15.0.0, ≤ 15.0.1

• f5•big-ip_application_acceleration_manager

  ≥ 11.5.2, ≤ 11.6.5 | ≥ 12.1.0, ≤ 12.1.5 | ≥ 13.1.0, ≤ 13.1.3 | ≥ 14.1.0, ≤ 14.1.2 | ≥ 15.0.0, ≤ 15.0.1

• f5•big-ip_application_security_manager

  ≥ 11.5.2, ≤ 11.6.5 | ≥ 12.1.0, ≤ 12.1.5 | ≥ 13.1.0, ≤ 13.1.3 | ≥ 14.1.0, ≤ 14.1.2 | ≥ 15.0.0, ≤ 15.0.1

• f5•big-ip_domain_name_system

  ≥ 11.5.2, ≤ 11.6.5 | ≥ 12.1.0, ≤ 12.1.5 | ≥ 13.1.0, ≤ 13.1.3 | ≥ 14.1.0, ≤ 14.1.2 | ≥ 15.0.0, ≤ 15.0.1

• f5•big-ip_fraud_protection_service

  ≥ 11.5.2, ≤ 11.6.5 | ≥ 12.1.0, ≤ 12.1.5 | ≥ 13.1.0, ≤ 13.1.3 | ≥ 14.1.0, ≤ 14.1.2 | ≥ 15.0.0, ≤ 15.0.1

• f5•big-ip_global_traffic_manager

  ≥ 11.5.2, ≤ 11.6.5 | ≥ 12.1.0, ≤ 12.1.5 | ≥ 13.1.0, ≤ 13.1.3 | ≥ 14.1.0, ≤ 14.1.2 | ≥ 15.0.0, ≤ 15.0.1

• f5•big-ip_link_controller

  ≥ 11.5.2, ≤ 11.6.5 | ≥ 12.1.0, ≤ 12.1.5 | ≥ 13.1.0, ≤ 13.1.3 | ≥ 14.1.0, ≤ 14.1.2 | ≥ 15.0.0, ≤ 15.0.1

• f5•big-ip_local_traffic_manager

  ≥ 11.5.2, ≤ 11.6.5 | ≥ 12.1.0, ≤ 12.1.5 | ≥ 13.1.0, ≤ 13.1.3 | ≥ 14.1.0, ≤ 14.1.2 | ≥ 15.0.0, ≤ 15.0.1

• f5•big-ip_policy_enforcement_manager

  ≥ 11.5.2, ≤ 11.6.5 | ≥ 12.1.0, ≤ 12.1.5 | ≥ 13.1.0, ≤ 13.1.3 | ≥ 14.1.0, ≤ 14.1.2 | ≥ 15.0.0, ≤ 15.0.1

• f5•big-iq_centralized_management

  ≥ 5.2.0, ≤ 5.4.0 | ≥ 6.0.0, ≤ 6.1.0 | 7.0.0

• f5•enterprise_manager

  3.1.1

• fedoraproject•fedora

  30 | 31

• intel•celeron_g1610_firmware

  na

• intel•celeron_g1610t_firmware

  na

• intel•celeron_g1620_firmware

  na

• intel•celeron_g1620t_firmware

  na

• intel•celeron_g1630_firmware

  na

• intel•celeron_g1820_firmware

  na

• intel•celeron_g1820t_firmware

  na

• intel•celeron_g1820te_firmware

  na

• intel•celeron_g1830_firmware

  na

• intel•celeron_g1840_firmware

  na

• intel•celeron_g1840t_firmware

  na

• intel•celeron_g1850_firmware

  na

• intel•celeron_g3900_firmware

  na

• intel•celeron_g3900e_firmware

  na

• intel•celeron_g3900t_firmware

  na

• intel•celeron_g3900te_firmware

  na

• intel•celeron_g3902e_firmware

  na

• intel•celeron_g3920_firmware

  na

• intel•celeron_g3930_firmware

  na

• intel•celeron_g3930e_firmware

  na

• intel•celeron_g3930t_firmware

  na

• intel•celeron_g3930te_firmware

  na

• intel•celeron_g3950_firmware

  na

• intel•celeron_g4900_firmware

  na

• intel•celeron_g4900t_firmware

  na

• intel•celeron_g4920_firmware

  na

• intel•celeron_g4930_firmware

  na

• intel•celeron_g4930e_firmware

  na

• intel•celeron_g4930t_firmware

  na

• intel•celeron_g4932e_firmware

  na

• intel•celeron_g4950_firmware

  na

• intel•core_i3-1005g1_firmware

  na

• intel•core_i3-10110u_firmware

  na

• intel•core_i3-10110y_firmware

  na

Showing first 50 affected entries in server-rendered view.

References (16)

• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/
• https://access.redhat.com/errata/RHSA-2019:3916
• https://access.redhat.com/errata/RHSA-2019:3936
• https://access.redhat.com/errata/RHSA-2019:3941
• https://usn.ubuntu.com/4186-2/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/
• http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00042.html
• https://access.redhat.com/errata/RHSA-2020:0026
• https://access.redhat.com/errata/RHSA-2020:0028
• https://www.debian.org/security/2020/dsa-4602
• https://seclists.org/bugtraq/2020/Jan/21
• https://access.redhat.com/errata/RHSA-2020:0204
• https://security.gentoo.org/glsa/202003-56
• https://www.oracle.com/security-alerts/cpujul2020.html
• https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00210.html
• https://support.f5.com/csp/article/K17269881?utm_source=f5support&amp%3Butm_medium=RSS