CVE-2017-8106

Name of the Vulnerable Software and Affected Versions Linux kernel versions 3.12 through 3.15

Description The issue is related to the handle invept function in the Linux kernel, which can cause a denial of service due to a NULL pointer dereference and host OS crash. This can be triggered by a privileged KVM guest OS user using a single-context INVEPT instruction with a NULL EPT pointer. The exploitation of this issue may allow an attacker to cause a denial of service.

Recommendations For Linux kernel versions 3.12 through 3.15, consider disabling the handle invept function as a temporary workaround until a patch is available. Restrict access to the KVM guest OS to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.