[kernel-sec-discuss] r5582 - dsa-texts
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Sep 20 19:24:44 UTC 2017
Author: carnil
Date: 2017-09-20 19:24:44 +0000 (Wed, 20 Sep 2017)
New Revision: 5582
Modified:
dsa-texts/4.9.30-2+deb9u5
Log:
Add description for CVE-2017-1000252
Modified: dsa-texts/4.9.30-2+deb9u5
===================================================================
--- dsa-texts/4.9.30-2+deb9u5 2017-09-20 19:18:13 UTC (rev 5581)
+++ dsa-texts/4.9.30-2+deb9u5 2017-09-20 19:24:44 UTC (rev 5582)
@@ -141,6 +141,11 @@
CVE-2017-1000252 (stretch only)
+ Jan H. Schoenherr of Amazon reported that there exists a reachable
+ assertion failure in the KVM implementation with enabled Virtual
+ Function I/O feature (ONFIG_VFIO), allowing a malicious guest
+ process to crash the KVM hypervisor and causing a denial of service.
+
CVE-2017-1000370
CVE-2017-1000371
More information about the kernel-sec-discuss
mailing list