CVE-2014-8481

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.18-rc2

Description The issue is related to the instruction decoder in the KVM subsystem, which does not properly handle invalid instructions. This allows guest OS users to cause a denial of service, resulting in a NULL pointer dereference and host OS crash, by running a crafted application. The application can trigger this issue by either causing an improperly fetched instruction or by using an instruction that occupies too many bytes.

Recommendations For Linux kernel versions prior to 3.18-rc2, update to version 3.18-rc2 or later to resolve the issue.