[USN-3484-3] Linux kernel (GCP) vulnerability
Severity
High
Affected Packages
2
CVEs
1
The system could be made to crash or run programs as an administrator.
It was discovered that the KVM subsystem in the Linux kernel did not
properly keep track of nested levels in guest page tables. A local attacker
in a guest VM could use this to cause a denial of service (host OS crash)
or possibly execute arbitrary code in the host OS.
Package | Affected Version |
---|---|
pkg:deb/ubuntu/linux-image-extra-4.10.0-1009-gcp?distro=xenial | < 4.10.0-1009.9 |
pkg:deb/ubuntu/linux-image-4.10.0-1009-gcp?distro=xenial | < 4.10.0-1009.9 |
- ID
- USN-3484-3
- Severity
- high
- URL
- https://ubuntu.com/security/notices/USN-3484-3
- Published
-
2017-11-21T18:23:08
(6 years ago) - Modified
-
2017-11-21T18:23:08
(6 years ago) - Other Advisories
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/linux-image-extra-4.10.0-1009-gcp?distro=xenial | ubuntu | linux-image-extra-4.10.0-1009-gcp | < 4.10.0-1009.9 | xenial | ||
Affected | pkg:deb/ubuntu/linux-image-4.10.0-1009-gcp?distro=xenial | ubuntu | linux-image-4.10.0-1009-gcp | < 4.10.0-1009.9 | xenial |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |