CVE-2018-10901 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2018-10901 Interim 1 19 2025-02-17T02:49:00Z current 2021-05-30T14:13:05Z 2025-02-17T02:49:00Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2018-10901 A flaw was found in Linux kernel's KVM virtualization subsystem. The VMX code does not restore the GDT.LIMIT to the previous host value, but instead sets it to 64KB. With a corrupted GDT limit a host's userspace code has an ability to place malicious entries in the GDT, particularly to the per-cpu variables. An attacker can use this to escalate their privileges. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 11 SP3 for Teradata SUSE Linux Enterprise Server 11 SP4-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Development Tools 15 kernel-default kernel-default-base kernel-default-devel kernel-default-extra kernel-default-man kernel-devel kernel-macros kernel-source kernel-default as a component of SUSE Linux Enterprise Desktop 12 SP3 kernel-default-devel as a component of SUSE Linux Enterprise Desktop 12 SP3 kernel-default-extra as a component of SUSE Linux Enterprise Desktop 12 SP3 kernel-devel as a component of SUSE Linux Enterprise Desktop 12 SP3 kernel-macros as a component of SUSE Linux Enterprise Desktop 12 SP3 kernel-source as a component of SUSE Linux Enterprise Desktop 12 SP3 kernel-default as a component of SUSE Linux Enterprise Module for Basesystem 15 kernel-default-base as a component of SUSE Linux Enterprise Module for Basesystem 15 kernel-default-devel as a component of SUSE Linux Enterprise Module for Basesystem 15 kernel-default-man as a component of SUSE Linux Enterprise Module for Basesystem 15 kernel-devel as a component of SUSE Linux Enterprise Module for Basesystem 15 kernel-macros as a component of SUSE Linux Enterprise Module for Basesystem 15 kernel-source as a component of SUSE Linux Enterprise Module for Basesystem 15 kernel-default as a component of SUSE Linux Enterprise Module for Development Tools 15 kernel-source as a component of SUSE Linux Enterprise Module for Development Tools 15 kernel-default as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata kernel-source as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata kernel-default as a component of SUSE Linux Enterprise Server 11 SP3 for Teradata kernel-source as a component of SUSE Linux Enterprise Server 11 SP3 for Teradata kernel-default as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-default-base as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-default-devel as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-default-man as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-source as a component of SUSE Linux Enterprise Server 11 SP4-LTSS kernel-default as a component of SUSE Linux Enterprise Server 12 SP3 kernel-default-base as a component of SUSE Linux Enterprise Server 12 SP3 kernel-default-devel as a component of SUSE Linux Enterprise Server 12 SP3 kernel-default-man as a component of SUSE Linux Enterprise Server 12 SP3 kernel-devel as a component of SUSE Linux Enterprise Server 12 SP3 kernel-macros as a component of SUSE Linux Enterprise Server 12 SP3 kernel-source as a component of SUSE Linux Enterprise Server 12 SP3 A flaw was found in Linux kernel's KVM virtualization subsystem. The VMX code does not restore the GDT.LIMIT to the previous host value, but instead sets it to 64KB. With a corrupted GDT limit a host's userspace code has an ability to place malicious entries in the GDT, particularly to the per-cpu variables. An attacker can use this to escalate their privileges. CVE-2018-10901 SUSE Linux Enterprise Desktop 12 SP3:kernel-default SUSE Linux Enterprise Desktop 12 SP3:kernel-default-devel SUSE Linux Enterprise Desktop 12 SP3:kernel-default-extra SUSE Linux Enterprise Desktop 12 SP3:kernel-devel SUSE Linux Enterprise Desktop 12 SP3:kernel-macros SUSE Linux Enterprise Desktop 12 SP3:kernel-source SUSE Linux Enterprise Module for Basesystem 15:kernel-default SUSE Linux Enterprise Module for Basesystem 15:kernel-default-base SUSE Linux Enterprise Module for Basesystem 15:kernel-default-devel SUSE Linux Enterprise Module for Basesystem 15:kernel-default-man SUSE Linux Enterprise Module for Basesystem 15:kernel-devel SUSE Linux Enterprise Module for Basesystem 15:kernel-macros SUSE Linux Enterprise Module for Basesystem 15:kernel-source SUSE Linux Enterprise Module for Development Tools 15:kernel-default SUSE Linux Enterprise Module for Development Tools 15:kernel-source SUSE Linux Enterprise Server 11 SP1 for Teradata:kernel-default SUSE Linux Enterprise Server 11 SP1 for Teradata:kernel-source SUSE Linux Enterprise Server 11 SP3 for Teradata:kernel-default SUSE Linux Enterprise Server 11 SP3 for Teradata:kernel-source SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-base SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-devel SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-default-man SUSE Linux Enterprise Server 11 SP4-LTSS:kernel-source SUSE Linux Enterprise Server 12 SP3:kernel-default SUSE Linux Enterprise Server 12 SP3:kernel-default-base SUSE Linux Enterprise Server 12 SP3:kernel-default-devel SUSE Linux Enterprise Server 12 SP3:kernel-default-man SUSE Linux Enterprise Server 12 SP3:kernel-devel SUSE Linux Enterprise Server 12 SP3:kernel-macros SUSE Linux Enterprise Server 12 SP3:kernel-source important 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C 7.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H