Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2017-2583 - log back

CVE-2017-2583 created at 25 Sep 2019 19:31:40

Severity

+

Medium

Remote

+

Local

Type

+	Privilege escalation

Description

+	The Linux kernel > 3.6-rc1, when built with Kernel-based Virtual Machine (CONFIG_KVM) support, is vulnerable to an incorrect segment selector (SS) value error. It could occur loading values into SS register in long mode.
+	A user/process inside a guest host could use this flaw to crash the guest, resulting in denial of service, or potentially escalate their privileges inside the guest system on an AMD processor.

References

+	http://seclists.org/oss-sec/2017/q1/137
+	https://git.kernel.org/linus/33ab91103b3415e12457e3104f0e4517ce12d0f3

Notes

+	Introduced in 3.6-rc1 according to Debian