CVE-2019-3887
Description
A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1 guest could access L0s APIC register values via L2 guest, when virtualize x2APIC mode is enabled. A guest could use this flaw to potentially crash the host kernel resulting in DoS issue. Kernel versions from 4.16 and newer are vulnerable to this issue.
Risk Information
Base Score
5.6
MODERATE
Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.049
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| (RHSA-2019:2703) kernel security and bug fix update bpftool-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-abi-whitelists-4.18.0-80.11.1.el8_0.noarch.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-core-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-cross-headers-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-debug-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-debug-core-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-debug-devel-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-debug-modules-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-debug-modules-extra-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-devel-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-doc-4.18.0-80.11.1.el8_0.noarch.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-headers-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-modules-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-modules-extra-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-tools-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update kernel-tools-libs-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update perf-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
| (RHSA-2019:2703) kernel security and bug fix update python3-perf-4.18.0-80.11.1.el8_0.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234