CVE-2021-38198
Description
arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel before 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.079
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-5070-1) linux-image-aws_5.11.0.1017.18_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-aws_5.11.0.1017.18~20.04.16_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-gcp_5.11.0.1018.18_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-gke_5.11.0.1018.18_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-kvm_5.11.0.1015.16_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-azure_5.11.0.1015.16_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-oracle_5.11.0.1017.18_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-oracle_5.11.0.1017.18~20.04.10_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-generic_5.11.0.34.36_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-virtual_5.11.0.34.36_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-oem-20.04_5.11.0.34.36_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-lowlatency_5.11.0.34.36_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-5.11.0-1015-kvm_5.11.0-1015.16_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-5.11.0-1017-aws_5.11.0-1017.18_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-5.11.0-1017-aws_5.11.0-1017.18~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-5.11.0-1018-gcp_5.11.0-1018.20_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-5.11.0-1015-azure_5.11.0-1015.16_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-5.11.0-1015-azure_5.11.0-1015.16~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-5.11.0-34-generic_5.11.0-34.36_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-5.11.0-34-generic_5.11.0-34.36~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-generic-hwe-20.04_5.11.0.34.36~20.04.13_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-virtual-hwe-20.04_5.11.0.34.36~20.04.13_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-5.11.0-1017-oracle_5.11.0-1017.18_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-5.11.0-1017-oracle_5.11.0-1017.18~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-5.11.0-34-lowlatency_5.11.0-34.36_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-5.11.0-34-lowlatency_5.11.0-34.36~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5070-1) linux-image-lowlatency-hwe-20.04_5.11.0.34.36~20.04.13_amd64.deb | Linux |
| Kernel-uek update (ELSA-2021-9474) kernel-uek-5.4.17-2102.206.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2021-9474) kernel-uek-debug-5.4.17-2102.206.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2021-9474) kernel-uek-debug-devel-5.4.17-2102.206.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2021-9474) kernel-uek-devel-5.4.17-2102.206.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2021-9474) kernel-uek-doc-5.4.17-2102.206.1.el8uek.noarch.rpm | Linux |
| Kernel-uek update (ELSA-2021-9486) kernel-uek-5.4.17-2136.300.7.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2021-9486) kernel-uek-debug-5.4.17-2136.300.7.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2021-9486) kernel-uek-debug-devel-5.4.17-2136.300.7.el8uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2021-9486) kernel-uek-devel-5.4.17-2136.300.7.el8uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2021-9486) kernel-uek-doc-5.4.17-2136.300.7.el8uek.noarch.rpm | Linux |
| Kernel-uek-container update (ELSA-2021-9487) kernel-uek-container-5.4.17-2136.300.7.el8.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2021-9487) kernel-uek-container-debug-5.4.17-2136.300.7.el8.x86_64.rpm | Linux |
| Linux kernel (USN-5114-1) linux-image-kvm_4.15.0.1101.97_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-generic_4.15.0.161.150_i386.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-generic_4.15.0.161.150_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-virtual_4.15.0.161.150_i386.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-virtual_4.15.0.161.150_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-dell300x_4.15.0.1029.31_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-lowlatency_4.15.0.161.150_i386.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-lowlatency_4.15.0.161.150_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-aws-lts-18.04_4.15.0.1114.117_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-gcp-lts-18.04_4.15.0.1110.129_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-4.15.0-1101-kvm_4.15.0-1101.103_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-4.15.0-1110-gcp_4.15.0-1110.124_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-4.15.0-1114-aws_4.15.0-1114.121_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-azure-lts-18.04_4.15.0.1125.98_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-4.15.0-1125-azure_4.15.0-1125.138_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-4.15.0-161-generic_4.15.0-161.169_i386.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-4.15.0-161-generic_4.15.0-161.169_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-4.15.0-1029-dell300x_4.15.0-1029.34_amd64.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-4.15.0-161-lowlatency_4.15.0-161.169_i386.deb | Linux |
| Linux kernel (USN-5114-1) linux-image-4.15.0-161-lowlatency_4.15.0-161.169_amd64.deb | Linux |
| SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.132.1.i586.rpm | Linux |
| SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.132.1.x86_64.rpm | Linux |
| SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-pae-extra-3.0.101-108.132.1.i586.rpm | Linux |
| SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-trace-extra-3.0.101-108.132.1.x86_64.rpm | Linux |
| SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.132.1.i586.rpm | Linux |
| SUSE-SU-2021:14849-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.132.1.x86_64.rpm | Linux |
| Kernel-uek-container update (ELSA-2022-9999) kernel-uek-container-5.4.17-2136.313.6.el8.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2022-9999) kernel-uek-container-debug-5.4.17-2136.313.6.el8.x86_64.rpm | Linux |
| snapdragon (USN-5114-1) linux-image-4.15.0-1082-oracle_4.15.0-1082.90_amd64.deb | Linux |
| raspi (USN-5116-2) linux-image-5.4.0-1006-ibm_5.4.0-1006.7_amd64.deb | Linux |
| raspi (USN-5116-2) linux-image-5.4.0-1056-gcp_5.4.0-1056.60_amd64.deb | Linux |
| raspi (USN-5116-2) linux-image-5.4.0-1056-gcp_5.4.0-1056.60~18.04.1_amd64.deb | Linux |
| kernel Security Update (ALAS-2021-1704) kernel-livepatch-4.14.246-187.474-1.0-0.amzn2.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234