PT-2018-3623 · Linux+2 · Linux Kernel+2

Will Deacon

·

Published

2018-10-01

·

Updated

2019-04-03

·

CVE-2018-18021

CVSS v3.1

7.1

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.18.12 on the arm64 platform
Description The issue is related to the KVM subsystem in the Linux kernel, specifically in the arch/arm64/kvm/guest.c file. It is caused by insufficient restrictions on userspace access to the core register file and inadequate PSTATE.M validation, which can lead to unintended execution modes. An attacker who can create virtual machines can exploit this to arbitrarily redirect the hypervisor flow of control with full register control or cause a denial of service via an illegal exception return, potentially leading to a hypervisor panic.
Recommendations For Linux kernel versions prior to 4.18.12 on the arm64 platform, update to version 4.18.12 or later to resolve the issue. As a temporary workaround, consider restricting access to the KVM subsystem to minimize the risk of exploitation.

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

ALT-PU-2018-2420
ALT-PU-2018-2445
ALT-PU-2019-1433
BDU:2021-01416
CVE-2018-18021
DLA-1715-1
DSA-4313-1
RHSA-2018:3656
USN-3821-1
USN-3821-2
USN-3931-1
USN-3931-2

Affected Products

Alt Linux
Linux Kernel
Ubuntu