Vulnerabilities

CVE-2018-10853

by Fred · 11/09/2018

A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilege(CPL) level while emulating unprivileged instructions. An unprivileged guest user/process could use this flaw to potentially escalate privileges inside guest.

Date published : 2018-09-11

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10853

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=129a72a0d3c8e139a04512325384fe5ac119e74

Similar

Tags: Cybersecurity Alert