[PATCH 0/1][SRU][D/Unstable] CVE-2018-16880 - vhost_net out-of-bounds write
Tyler Hicks
tyhicks at canonical.com
Mon Feb 4 21:03:35 UTC 2019
https://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-16880.html
A flaw was found in the Linux kernel's handle_rx() function in the [vhost_net]
driver. A malicious virtual guest, under specific conditions, can trigger an
out-of-bounds write in a kmalloc-8 slab on a virtual host which may lead to a
kernel memory corruption and a system panic. Due to the nature of the flaw,
privilege escalation cannot be fully ruled out. Versions from v4.16 and newer
are vulnerable.
This is a clean cherry pick to Disco and Unstable. I've ensured that there are
no new build warnings and smoke tested this patch by boot testing in a VM.
Tyler
More information about the kernel-team
mailing list