Veracode Vulnerability DatabaseVERACODE:12372Denial Of Service (DoS)
0.0004 Low
EPSS
Percentile
5.1%
Linux kernel is vulnerable to denial of service. Linux kernel built with the Kernel-based Virtual Machine (CONFIG_KVM) support is vulnerable to a null pointer dereference flaw. It could occur on x86 platform, when emulating an undefined instruction. An attacker could use this flaw to crash the host kernel resulting in DoS.
References
git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=d9092f52d7e61dd1557f2db2400ddb430e85937e
rhn.redhat.com/errata/RHSA-2017-0386.html
rhn.redhat.com/errata/RHSA-2017-0387.html
www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.7
www.openwall.com/lists/oss-security/2016/11/22/3
www.securityfocus.com/bid/94459
access.redhat.com/errata/RHSA-2017:0386
access.redhat.com/errata/RHSA-2017:0387
access.redhat.com/security/cve/CVE-2016-8630
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=1393350
bugzilla.redhat.com/show_bug.cgi?id=1415172
github.com/torvalds/linux/commit/d9092f52d7e61dd1557f2db2400ddb430e85937e
Related
