CVE-2017-1000407

Source
Severity Medium
Remote Yes
Type Denial of service
Description
Linux kernel Virtualization Module (CONFIG_KVM) for the Intel processor family (CONFIG_KVM_INTEL) before 4.14.6, 4.9.69, 4.4.106, 3.18.88, 3.16.52 and 3.2.97 is vulnerable to a denial of service issue. It could occur if a guest was to flood the I/O port 0x80 with write requests. A guest user could use this flaw to crash the host kernel resulting in denial of service.
Group Package Affected Fixed Severity Status Ticket
AVG-565 linux-lts 4.9.68-1 4.9.69-1 Medium Fixed
AVG-564 linux-hardened 4.14.5-1 4.14.6-1 Medium Fixed
AVG-563 linux-zen 4.14.5-1 4.14.6-1 Medium Fixed
AVG-562 linux 4.14.5-1 4.14.6-1 Medium Fixed
References
http://www.openwall.com/lists/oss-security/2017/12/04/2
https://git.kernel.org/linus/d59d51f088014f25c2562de59b9abff4f42a7468