[SRU][T][PATCH 0/1] CVE-2017-7518 - Incorrect debug exception emulation
Tyler Hicks
tyhicks at canonical.com
Mon Jul 9 21:16:32 UTC 2018
https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-7518.html
Andy Lutomirski discovered that the KVM implementation in the Linux kernel
was vulnerable to a debug exception error when single-stepping through a
syscall. A local attacker in a non-Linux guest vm could possibly use this
to gain administrative privileges in the guest vm.
This is a cherry-picked patch from the 3.16 linux-stable tree.
Tyler
More information about the kernel-team
mailing list