CVE-2016-9777

CVE-2016-9777

KVM in the Linux kernel before 4.8.12, when I/O APIC is enabled, does not properly restrict the VCPU index, which allows guest OS users to gain host OS privileges or cause a denial of service (out-of-bounds array access and host OS crash) via a crafted interrupt request, related to arch/x86/kvm/ioapic.c and arch/x86/kvm/ioapic.h.

Source: CVE-2016-9777

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다