Rewterz penetration testing services help organizations determine if a cyber attacker can gain access to their critical assets while giving them detailed insights of the overall business impact of a cyber attack.
Before Rewterz got its start, the market was in dire need of a specialized and dedicated information security company. It was nearly impossible for businesses to find a trustworthy provider that could truly cover all of their bases. We wanted to meet this need, giving companies across the globe a chance to get ahead while knowing that their data is in good hands.
Rewterz penetration testing services help organizations determine if a cyber attacker can gain access to their critical assets while giving them detailed insights of the overall business impact of a cyber attack.
Before Rewterz got its start, the market was in dire need of a specialized and dedicated information security company. It was nearly impossible for businesses to find a trustworthy provider that could truly cover all of their bases. We wanted to meet this need, giving companies across the globe a chance to get ahead while knowing that their data is in good hands.
SEVERITY: Medium
CATEGORY: Vulnerability
ANALYSIS SUMMARY
A use-after-free issue was found in the way Linux kernel’s KVM hypervisor processed posted interrupts, when nested(=1) virtualization is enabled. Innested_get_vmcs12_pages(). In case of an error while processing posted interrupt address, it unmaps the ‘pi_desc_page’ without resetting ‘pi_desc’ descriptor address. Which is later used in pi_test_and_clear_on().
A guest user/process could use this flaw to crash the host kernel resulting in DoS.
IMPACT
System access or Dos (Denial of Service) in guest virtual machine.
AFFECTED PRODUCTS
REMEDIATION
Upstream patch can be followed from the following link.
(Note: This is a third-party patch, whereas the vendor has not released any patches for this vulnerability so far.)
https://marc.info/?l=kvm&m=154514994222809&w=2
If you thin you’re a victim of a cyber-attack, immediately send an email to soc@rewterz.com for a quick response.