Description

A vulnerability was found in kvm_s390_guest_sida_op in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel. This flaw allows a local attacker with a normal user privilege to obtain unauthorized memory write access. This flaw affects Linux kernel versions prior to 5.17-rc4.

Related CPE's

o

linux

linux_kernel

4

o

fedoraproject

fedora

2

o

debian

debian_linux

11.0

Vulnerable

a

redhat

virtualization_host

4.0

Vulnerable

o

redhat

enterprise_linux

3

o

redhat

enterprise_linux_eus

2

o

redhat

enterprise_linux_for_ibm_z_systems

8.0

Vulnerable

o

redhat

enterprise_linux_for_ibm_z_systems_eus

8.4

Vulnerable

o

redhat

enterprise_linux_for_power_little_endian

2

o

redhat

enterprise_linux_for_power_little_endian_eus

2

o

redhat

enterprise_linux_server_aus

8.4

Vulnerable

o

redhat

enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions

8.4

Vulnerable

o

redhat

enterprise_linux_server_tus

8.4

Vulnerable

o

redhat

enterprise_linux_server_update_services_for_sap_solutions

8.4

Vulnerable

a

redhat

codeready_linux_builder

-

Vulnerable

o

netapp

h300s_firmware

-

Vulnerable

h

netapp

h300s

-

o

netapp

h500s_firmware

-

Vulnerable

h

netapp

h500s

-

o

netapp

h700s_firmware

-

Vulnerable

h

netapp

h700s

-

o

netapp

h300e_firmware

-

Vulnerable

h

netapp

h300e

-

o

netapp

h500e_firmware

-

Vulnerable

h

netapp

h500e

-

o

netapp

h700e_firmware

-

Vulnerable

h

netapp

h700e

-

o

netapp

h410s_firmware

-

Vulnerable

h

netapp

h410s

-

o

netapp

h410c_firmware

-

Vulnerable

h

netapp

h410c

-

References

https://bugzilla.redhat.com/show_bug.cgi?id=2050237

Issue TrackingPatchThird Party Advisory

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=09a93c1df3eafa43bcdfd7bf837c574911f12f55

Mailing ListPatchThird Party Advisory

https://security.netapp.com/advisory/ntap-20220331-0009/

Third Party Advisory

https://www.debian.org/security/2022/dsa-5092

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=2050237

Issue TrackingPatchThird Party Advisory

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=09a93c1df3eafa43bcdfd7bf837c574911f12f55

Mailing ListPatchThird Party Advisory

https://security.netapp.com/advisory/ntap-20220331-0009/

Third Party Advisory

https://www.debian.org/security/2022/dsa-5092

Third Party Advisory

Weaknesses

[email protected]

Secondary
CWE-200

[email protected]

Primary
NVD-CWE-noinfo

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2022-03-10T16:44:56.470Z

4 years ago

Last modified

2024-11-21T05:38:49.250Z

1 year ago