Vulnerability: Privilege Escalation and Denial of Service in Linux Kernel's MSR 0x2f8 Handling

Vulnerability: Privilege Escalation and Denial of Service in Linux Kernel's MSR 0x2f8 Handling

CVE-2016-3713 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:N/A:C

The msr_mtrr_valid function in arch/x86/kvm/mtrr.c in the Linux kernel before 4.6.1 supports MSR 0x2f8, which allows guest OS users to read or write to the kvm_arch_vcpu data structure, and consequently obtain sensitive information or cause a denial of service (system crash), via a crafted ioctl call.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.