CVE-2015-0239

 

Published at: - 02-03-2015 12:59

Last modified: - 21-09-2022 08:44

Total changes: - 2

Description

The em_sysenter function in arch/x86/kvm/emulate.c in the Linux kernel before 3.18.5, when the guest OS lacks SYSENTER MSR initialization, allows guest OS users to gain guest OS privileges or cause a denial of service (guest OS crash) by triggering use of a 16-bit code segment for emulation of a SYSENTER instruction.

Common Vulnerability Scoring System (CVSS)

AV:L/AC:M/Au:N/C:P/I:P/A:P

 

Verification logic

 

Reference

• [bk-commits-head] 20150123 KVM: x86: SYSENTER emulation is broken-Broken Link
• http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=f3747379accba8e95d70cec0eae0582c8c182050
• https://github.com/torvalds/linux/commit/f3747379accba8e95d70cec0eae0582c8c182050
• http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.5
• [oss-security] 20150127 KVM SYSENTER emulation vulnerability - CVE-2015-0239-Exploit, Mailing List, Third Party Advisory
• https://bugzilla.redhat.com/show_bug.cgi?id=1186448
• USN-2518-1-Third Party Advisory
• USN-2515-1-Third Party Advisory
• USN-2516-1-Third Party Advisory
• USN-2517-1-Third Party Advisory
• 72842-Third Party Advisory, VDB Entry
• USN-2514-1-Third Party Advisory
• USN-2513-1-Third Party Advisory
• DSA-3170-Third Party Advisory
• MDVSA-2015:058-Third Party Advisory
• http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
• http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
• RHSA-2015:1272-Third Party Advisory

 

Keywords

NVD

 

CVE-2015-0239

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures