Vulnerability: Privilege Escalation and Denial of Service in Linux Kernel SYSENTER Emulation

Vulnerability: Privilege Escalation and Denial of Service in Linux Kernel SYSENTER Emulation

CVE-2015-0239 · MEDIUM Severity

AV:L/AC:M/AU:N/C:P/I:P/A:P

The em_sysenter function in arch/x86/kvm/emulate.c in the Linux kernel before 3.18.5, when the guest OS lacks SYSENTER MSR initialization, allows guest OS users to gain guest OS privileges or cause a denial of service (guest OS crash) by triggering use of a 16-bit code segment for emulation of a SYSENTER instruction.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.