CVE 2017-12188
arch/x86/kvm/mmu.c in the Linux kernel through 4.13.5, when nested virtualisation is used, does not properly traverse guest pagetable entries to resolve a guest virtual address, which allows L1 guest OS users to execute arbitrary code on the host OS or cause a denial of service (incorrect index during page walking, and host OS crash), aka an "MMU potential stack buffer overrun."
Related bugs and status
CVE-2017-12188 (Candidate) is related to these bugs:
Bug #1728930: linux-azure: 4.11.0-1015.15 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | linux-azure (Ubuntu) | Undecided | Invalid | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Invalid | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Medium | Invalid | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
1728930 | linux-azure: 4.11.0-1015.15 -proposed tracker | linux-azure (Ubuntu Xenial) | Undecided | Fix Released |
Bug #1728974: linux-gcp: 4.10.0-1009.9 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | linux-gcp (Ubuntu) | Undecided | Invalid | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Invalid | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Medium | Invalid | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | linux-gcp (Ubuntu Xenial) | Undecided | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow snap-certification-testing | Medium | Invalid | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow snap-release-to-beta | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow snap-release-to-candidate | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow snap-release-to-edge | Medium | Fix Released | ||
1728974 | linux-gcp: 4.10.0-1009.9 -proposed tracker | Kernel SRU Workflow snap-release-to-stable | Medium | Invalid |
Bug #1728975: linux-raspi2: 4.10.0-1021.24 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | linux-raspi2 (Ubuntu) | Undecided | Invalid | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Fix Released | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Fix Released | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Fix Released | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Invalid | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Fix Released | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Medium | Invalid | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
1728975 | linux-raspi2: 4.10.0-1021.24 -proposed tracker | linux-raspi2 (Ubuntu Zesty) | Undecided | Fix Released |
See the
CVE page on Mitre.org
for more details.