Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The paravirt_ops_setup function in arch/x86/kernel/kvm.c in the Linux kernel through 3.18 uses an improper paravirt_enabled setting for KVM guest kernels, which makes it easier for guest OS users to bypass the ASLR protection mechanism via a crafted application that reads a 16-bit value.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel‘paravirt_ops_setup’函数安全漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 3.18及之前版本的arch/x86/kernel/kvm.c文件中的‘paravirt_ops_setup’函数存在安全漏洞,该漏洞源于程序对KVM虚拟机内核使用不正确的paravirt_enabled设置。攻击者可借助特制的应用程序利用该漏洞绕过ASLR保护机制。
CVSS Information
N/A
Vulnerability Type
N/A