CVE-2014-8134
published 2014-12-12CVE-2014-8134: The paravirt_ops_setup function in arch/x86/kernel/kvm.c in the Linux kernel through 3.18 uses an improper paravirt_enabled setting for KVM guest kernels…
low3.3CVSS 3.1
AVLACLPRNUIRSUCLINAN
The paravirt_ops_setup function in arch/x86/kernel/kvm.c in the Linux kernel through 3.18 uses an improper paravirt_enabled setting for KVM guest kernels, which makes it easier for guest OS users to bypass the ASLR protection mechanism via a crafted application that reads a 16-bit value.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | linux | < linux 3.16.7-ckt4-1 (bookworm) | linux 3.16.7-ckt4-1 (bookworm) |
| linux | linux_kernel | <= 3.18 | — |
| linux | linux_kernel | >= 0 < 3.16.7-ckt4-1 | 3.16.7-ckt4-1 |
| linux | linux_kernel | >= 0 < 3.16.7-ckt4-1 | 3.16.7-ckt4-1 |
| linux | linux_kernel | >= 0 < 3.16.7-ckt4-1 | 3.16.7-ckt4-1 |
| linux | linux_kernel | >= 0 < 3.16.7-ckt4-1 | 3.16.7-ckt4-1 |
| linux | linux_kernel | >= 0 < 3.13.0-43.72 | 3.13.0-43.72 |
| opensuse | evergreen | — | — |
| opensuse | opensuse | — | — |
| oracle | linux | — | — |
| suse | suse_linux_enterprise_server | — | — |
CVSS provenance
nvdv3.13.3LOWCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
osv7.5HIGH