Vulnerabilities

CVE-2014-8134

by Fred · 12/12/2014

The paravirt_ops_setup function in arch/x86/kernel/kvm.c in the Linux kernel through 3.18 uses an improper paravirt_enabled setting for KVM guest kernels, which makes it easier for guest OS users to bypass the ASLR protection mechanism via a crafted application that reads a 16-bit value.

Date published : 2014-12-12

http://www.securityfocus.com/bid/71650

http://people.canonical.com/~ubuntu-security/cve/2014/CVE-2014-8134.html

Similar

Tags: Cybersecurity Alert