MMU Potential Stack Buffer Overrun Vulnerability in Linux Kernel

MMU Potential Stack Buffer Overrun Vulnerability in Linux Kernel

CVE-2017-12188 · HIGH Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

arch/x86/kvm/mmu.c in the Linux kernel through 4.13.5, when nested virtualisation is used, does not properly traverse guest pagetable entries to resolve a guest virtual address, which allows L1 guest OS users to execute arbitrary code on the host OS or cause a denial of service (incorrect index during page walking, and host OS crash), aka an "MMU potential stack buffer overrun."

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.