Home

CVE-2017-7518

Description

A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(#DB) being raised in the guest stack. A user/process inside a guest could use this flaw to potentially escalate their privileges inside the guest. Linux guests are not affected by this.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.09

Associated Vulnerability

VulnerabilityOS Platform
(RHSA-2018:0395) Important: kernel security and bug fix update kernel-3.10.0-693.21.1.el7.x86_64.rpmLinux
(RHSA-2018:0395) Important: kernel security and bug fix update kernel-abi-whitelists-3.10.0-693.21.1.el7.noarch.rpmLinux
(RHSA-2018:0395) Important: kernel security and bug fix update kernel-debug-3.10.0-693.21.1.el7.x86_64.rpmLinux
(RHSA-2018:0395) Important: kernel security and bug fix update kernel-debug-devel-3.10.0-693.21.1.el7.x86_64.rpmLinux
(RHSA-2018:0395) Important: kernel security and bug fix update kernel-devel-3.10.0-693.21.1.el7.x86_64.rpmLinux
(RHSA-2018:0395) Important: kernel security and bug fix update kernel-doc-3.10.0-693.21.1.el7.noarch.rpmLinux
(RHSA-2018:0395) Important: kernel security and bug fix update kernel-headers-3.10.0-693.21.1.el7.x86_64.rpmLinux
(RHSA-2018:0395) Important: kernel security and bug fix update kernel-tools-3.10.0-693.21.1.el7.x86_64.rpmLinux
(RHSA-2018:0395) Important: kernel security and bug fix update kernel-tools-libs-3.10.0-693.21.1.el7.x86_64.rpmLinux
(RHSA-2018:0395) Important: kernel security and bug fix update kernel-tools-libs-devel-3.10.0-693.21.1.el7.x86_64.rpmLinux
(RHSA-2018:0395) Important: kernel security and bug fix update perf-3.10.0-693.21.1.el7.x86_64.rpmLinux
(RHSA-2018:0395) Important: kernel security and bug fix update python-perf-3.10.0-693.21.1.el7.x86_64.rpmLinux
(CESA-2018:0395) Important: kernel security and bug fix update perf-3.10.0-693.21.1.el7.x86_64.rpmLinux
(CESA-2018:0395) Important: kernel security and bug fix update python-perf-3.10.0-693.21.1.el7.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234