CVE-2015-0239
published 2015-03-02CVE-2015-0239: The em_sysenter function in arch/x86/kvm/emulate.c in the Linux kernel before 3.18.5, when the guest OS lacks SYSENTER MSR initialization, allows guest OS…
medium4.4CVSS 3.1
AVLACMAuNCPIPAP
The em_sysenter function in arch/x86/kvm/emulate.c in the Linux kernel before 3.18.5, when the guest OS lacks SYSENTER MSR initialization, allows guest OS users to gain guest OS privileges or cause a denial of service (guest OS crash) by triggering use of a 16-bit code segment for emulation of a SYSENTER instruction.
Affected
19 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | linux | < linux 3.16.7-ckt4-2 (bookworm) | linux 3.16.7-ckt4-2 (bookworm) |
| linux | linux_kernel | < 3.18.5 | 3.18.5 |
| linux | linux_kernel | >= 0 < 3.16.7-ckt4-2 | 3.16.7-ckt4-2 |
| linux | linux_kernel | >= 0 < 3.16.7-ckt4-2 | 3.16.7-ckt4-2 |
| linux | linux_kernel | >= 0 < 3.16.7-ckt4-2 | 3.16.7-ckt4-2 |
| linux | linux_kernel | >= 0 < 3.16.7-ckt4-2 | 3.16.7-ckt4-2 |
| linux | linux_kernel | >= 0 < 3.13.0-46.77 | 3.13.0-46.77 |
| linux | linux_kernel | >= 0 < 3.13.0-46.75 | 3.13.0-46.75 |
| linux | linux_kernel | >= 0 < 3.13.0-46.76 | 3.13.0-46.76 |
| oracle | linux | — | — |
| oracle | linux | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_workstation | — | — |
CVSS provenance
nvd4.4MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P
osv4.4MEDIUM