CVE-2018-10901

A flaw was found in Linux kernel’s KVM virtualization subsystem. The VMX code does not restore the GDT.LIMIT to the previous host value, but instead sets it to 64KB. With a corrupted GDT limit a host’s userspace code has an ability to place malicious entries in the GDT, particularly to the per-cpu variables. An attacker can use this to escalate their privileges.

Date published : 2018-07-26

http://www.securityfocus.com/bid/104905

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10901