Vulnerability CVE-2017-12154: Information

Description

The prepare_vmcs02 function in arch/x86/kvm/vmx.c in the Linux kernel through 4.13.3 does not ensure that the "CR8-load exiting" and "CR8-store exiting" L0 vmcs02 controls exist in cases where L1 omits the "use TPR shadow" vmcs12 control, which allows KVM L2 guest OS users to obtain read and write access to the hardware CR8 register.

Severity: HIGH (7.1) Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

URL: https://nvd.nist.gov/vuln/detail/CVE-2017-12154

Published: Sept. 26, 2017

Modified: Feb. 13, 2023

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
kernel-image-std-def	sisyphus	4.9.53-alt1	6.1.93-alt1	ALT-PU-2017-2375-1	190299	Fixed
kernel-image-std-def	p10	4.9.53-alt1	5.10.218-alt1	ALT-PU-2017-2375-1	190299	Fixed
kernel-image-std-def	p9	4.9.53-alt1	5.4.277-alt1	ALT-PU-2017-2375-1	190299	Fixed
kernel-image-std-def	p8	4.9.53-alt0.M80P.1	4.9.337-alt0.M80P.1	ALT-PU-2017-2381-1	190303	Fixed
kernel-image-std-def	c9f2	4.9.53-alt1	5.10.214-alt0.c9f.2	ALT-PU-2017-2375-1	190299	Fixed
kernel-image-std-def	p11	4.9.53-alt1	6.1.91-alt1	ALT-PU-2017-2375-1	190299	Fixed
kernel-image-std-pae	p8	4.4.93-alt0.M80P.1.1	4.4.159-alt0.M80P.1	ALT-PU-2017-2476-1	191158	Fixed
kernel-image-std-pae	c9f2	4.4.90-alt1	4.19.72-alt1	ALT-PU-2017-2379-1	190302	Fixed
kernel-image-un-def	sisyphus	4.13.4-alt1	6.6.33-alt1	ALT-PU-2017-2337-1	188960	Fixed
kernel-image-un-def	p10	4.13.4-alt1	6.1.90-alt1	ALT-PU-2017-2337-1	188960	Fixed
kernel-image-un-def	p9	4.13.4-alt1	5.10.218-alt1	ALT-PU-2017-2337-1	188960	Fixed
kernel-image-un-def	p8	4.9.53-alt0.M80P.1	4.19.310-alt0.M80P.1	ALT-PU-2017-2385-1	190311	Fixed
kernel-image-un-def	c10f1	4.13.4-alt1	6.1.85-alt0.c10f.1	ALT-PU-2017-2337-1	188960	Fixed
kernel-image-un-def	c9f2	4.13.4-alt1	5.10.29-alt2	ALT-PU-2017-2337-1	188960	Fixed
kernel-image-un-def	c7	4.4.90-alt0.M70C.1	4.9.277-alt0.M70C.1	ALT-PU-2017-2382-1	190307	Fixed
kernel-image-un-def	p11	4.13.4-alt1	6.6.31-alt1	ALT-PU-2017-2337-1	188960	Fixed
usbip	sisyphus	5.10-alt1	5.10-alt1	ALT-PU-2023-1798-1	320453	Fixed
usbip	sisyphus_e2k	5.10-alt1	5.10-alt1	ALT-PU-2023-7452-1	-	Fixed
usbip	p10	5.10-alt1	5.10-alt1	ALT-PU-2023-1903-1	320461	Fixed
usbip	p10_e2k	5.10-alt1	5.10-alt1	ALT-PU-2023-7498-1	-	Fixed
usbip	p11	5.10-alt1	5.10-alt1	ALT-PU-2023-1798-1	320453	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
https://www.spinics.net/lists/kvm/msg155414.html	Mailing List Patch Third Party Advisory
https://github.com/torvalds/linux/commit/51aa68e7d57e3217192d88ce90fd5b8ef29ec94f	Issue Tracking Patch Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1491224	Issue Tracking Patch Third Party Advisory
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=51aa68e7d57e3217192d88ce90fd5b8ef29ec94f	Issue Tracking Patch Third Party Advisory
100856	Third Party Advisory VDB Entry
DSA-3981
RHSA-2018:1062
RHSA-2018:0676
USN-3698-2
USN-3698-1
RHSA-2019:1946

Affected configurations:
1. Configuration 1
  cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
  End including
  4.13.3

Version: v24.5.3

Vulnerability CVE-2017-12154: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1