CVE 2018-1087
kernel KVM before versions kernel 4.16, kernel 4.16-rc7, kernel 4.17-rc1, kernel 4.17-rc2 and kernel 4.17-rc3 is vulnerable to a flaw in the way the Linux kernel's KVM hypervisor handled exceptions delivered after a stack switch operation via Mov SS or Pop SS instructions. During the stack switch operation, the processor did not deliver interrupts and exceptions, rather they are delivered once the first instruction after the stack switch is executed. An unprivileged KVM guest user could use this flaw to crash the guest or, potentially, escalate their privileges in the guest.
Related bugs and status
CVE-2018-1087 (Candidate) is related to these bugs:
Bug #1759303: Update Aquantia driver to fix various issues
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1759303 | Update Aquantia driver to fix various issues | linux (Ubuntu) | Medium | Fix Released | ||
| 1759303 | Update Aquantia driver to fix various issues | HWE Next | Undecided | Fix Released | ||
| 1759303 | Update Aquantia driver to fix various issues | linux-oem (Ubuntu) | Undecided | Fix Released | ||
| 1759303 | Update Aquantia driver to fix various issues | linux (Ubuntu Xenial) | Undecided | Invalid | ||
| 1759303 | Update Aquantia driver to fix various issues | linux-oem (Ubuntu Xenial) | Undecided | Fix Released | ||
Bug #1764684: Fix an issue that some PCI devices get incorrectly suspended
Bug #1766197: Update btusb reset-resume quirk to decrease power usage
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1766197 | Update btusb reset-resume quirk to decrease power usage | linux-oem (Ubuntu) | Undecided | Invalid | ||
| 1766197 | Update btusb reset-resume quirk to decrease power usage | HWE Next | Undecided | Fix Released | ||
| 1766197 | Update btusb reset-resume quirk to decrease power usage | linux-oem (Ubuntu Xenial) | Undecided | Fix Released | ||
Bug #1766398: set PINCFG_HEADSET_MIC to parse_flags for Dell precision 3630
Bug #1766477: Change the location for one of two front mics on a lenovo thinkcentre machine
Bug #1769996: linux-oem: 4.13.0-1027.30 -proposed tracker
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | linux-oem (Ubuntu) | Undecided | Invalid | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | linux-oem (Ubuntu Xenial) | Medium | Fix Released | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow | Medium | Fix Released | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow automated-testing | Medium | Fix Released | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow certification-testing | Medium | Fix Released | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow prepare-package | Medium | Fix Released | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Medium | Fix Released | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow prepare-package-signed | Medium | Fix Released | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Medium | Fix Released | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow promote-to-security | Medium | Invalid | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow promote-to-updates | Medium | Invalid | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow regression-testing | Medium | Invalid | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow security-signoff | Medium | Invalid | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Medium | New | ||
| 1769996 | linux-oem: 4.13.0-1027.30 -proposed tracker | Kernel SRU Workflow verification-testing | Medium | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
