Linux Kernel CVE-2017-7518 Privilege Escalation Vulnerability

Description: A flaw was found in the way the Linux KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(DB) being raised in the guest stack. A user/process inside a guest could use this flaw to potentially escalate their privileges inside the guest.

Impact: An attacker can leverage this issue to gain elevated privileges and perform unauthorized actions which may aid in launching further attacks.

Mitigation: Updates are available. Please see the references or vendor advisory for more information.

Reference URL’s:

Share