CVE-2016-9777

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.8.12

Description The issue allows guest OS users to gain host OS privileges or cause a denial of service, resulting in an out-of-bounds array access and host OS crash, via a crafted interrupt request when I/O APIC is enabled. This is related to the files arch/x86/kvm/ioapic.c and arch/x86/kvm/ioapic.h.

Recommendations For Linux kernel versions prior to 4.8.12, update to version 4.8.12 or later to resolve the issue. As a temporary workaround, consider disabling I/O APIC to minimize the risk of exploitation.