CVE-2019-3887: A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1 guest…

medium5.6CVSS 3.1

AVLACHPRLUINSCCNINAH

A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1 guest could access L0's APIC register values via L2 guest, when 'virtualize x2APIC mode' is enabled. A guest could use this flaw to potentially crash the host kernel resulting in DoS issue. Kernel versions from 4.16 and newer are vulnerable to this issue.

Affected

29 ranges· showing 25

Vendor	Product	Version range	Fixed in
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
debian	linux	< linux 4.19.37-1 (bookworm)	linux 4.19.37-1 (bookworm)
fedoraproject	fedora	—	—
linux	linux_kernel	>= 0 < 4.19.37-1	4.19.37-1
linux	linux_kernel	>= 0 < 4.19.37-1	4.19.37-1
linux	linux_kernel	>= 0 < 4.19.37-1	4.19.37-1
linux	linux_kernel	>= 0 < 4.19.37-1	4.19.37-1
linux	linux_kernel	>= 4.16	—
msrc	azl3_kernel_6.6.35.1-4_on_azure_linux_3.0	—	—
msrc	azl3_kernel_6.6.92.2-1_on_azure_linux_3.0	—	—
msrc	cbl2_kernel_5.10.78.1-1_on_cbl_mariner_2.0	—	—
msrc	cm1_kernel_5.10.60.1-1_on_cbl_mariner_1.0	—	—
redhat	enterprise_linux	—	—
redhat	enterprise_linux_eus	—	—
redhat	enterprise_linux_eus	—	—
redhat	enterprise_linux_eus	—	—
redhat	enterprise_linux_for_real_time	—	—
redhat	enterprise_linux_for_real_time_for_nfv	—	—
redhat	enterprise_linux_for_real_time_for_nfv_tus	—	—
redhat	enterprise_linux_for_real_time_for_nfv_tus	—	—
redhat	enterprise_linux_for_real_time_tus	—	—
redhat	enterprise_linux_for_real_time_tus	—	—
redhat	enterprise_linux_server_aus	—	—

CVSS provenance

nvdv3.15.6MEDIUMCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H

osv5.6MEDIUM