Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
arch/x86/kvm/vmx.c in the Linux kernel through 4.6.3 mishandles the APICv on/off state, which allows guest OS users to obtain direct APIC MSR access on the host OS, and consequently cause a denial of service (host OS crash) or possibly execute arbitrary code on the host OS, via x2APIC mode.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel 安全漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 4.6.3及之前版本的arch/x86/kvm/vmx.c文件中存在安全漏洞,该漏洞源于程序没有正确处理APICv on/off状态。虚拟机端攻击者可借助x2APIC模式利用该漏洞获取主机操作系统的直接APIC MSR访问权限,造成拒绝服务(主机操作系统崩溃),或执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A