The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non-canonical address to a model-specific register, which allows guest OS users to cause a denial of service (host OS crash) by leveraging guest OS privileges, related to the wrmsr_interception function in arch/x86/kvm/svm.c and the handle_wrmsr function in arch/x86/kvm/vmx.c.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
13 Feb 2023, 00:41
Type | Values Removed | Values Added |
---|---|---|
Summary | The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non-canonical address to a model-specific register, which allows guest OS users to cause a denial of service (host OS crash) by leveraging guest OS privileges, related to the wrmsr_interception function in arch/x86/kvm/svm.c and the handle_wrmsr function in arch/x86/kvm/vmx.c. | |
References |
|
02 Feb 2023, 20:17
Type | Values Removed | Values Added |
---|---|---|
Summary | It was found that KVM's Write to Model Specific Register (WRMSR) instruction emulation would write non-canonical values passed in by the guest to certain MSRs in the host's context. A privileged guest user could use this flaw to crash the host. | |
References |
|
|
Information
Published : 2014-11-10 11:55
Updated : 2023-12-10 11:31
NVD link : CVE-2014-3610
Mitre link : CVE-2014-3610
CVE.ORG link : CVE-2014-3610
JSON object : View
Products Affected
opensuse
- evergreen
linux
- linux_kernel
suse
- suse_linux_enterprise_server
canonical
- ubuntu_linux
debian
- debian_linux
CWE