Vulnerability: Denial of Service in Linux Kernel through WRMSR Processing

Vulnerability: Denial of Service in Linux Kernel through WRMSR Processing

CVE-2014-3610 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non-canonical address to a model-specific register, which allows guest OS users to cause a denial of service (host OS crash) by leveraging guest OS privileges, related to the wrmsr_interception function in arch/x86/kvm/svm.c and the handle_wrmsr function in arch/x86/kvm/vmx.c.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.