Jim Mattson

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions through 4.20.5 **Description** The issue is related to a Use-after-Free in the KVM implementation of the Linux kernel. This could potentially allow an attacker to cause a denial of service or execute arbitrary code. **Recommendations** For Linux kernel versions through 4.20.5, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.10 **Description** The issue mismanages the #BP and #OF exceptions in the Linux kernel, allowing guest OS users to cause a denial of service by declining to handle an exception thrown by an L2 guest. **Recommendations** For Linux kernel versions prior to 4.10, update to version 4.10 or later to resolve the issue.