- Home
- CVEs with nessus.description==A+statement+in+the+System+Programming+Guide+of+the+Intel+64+and+IA-32+Architectures+Software+Developer%27s+Manual+%28SDM%29+was+mishandled+in+the+development+of+some+or+all+operating-system+kernels%2C+resulting+in+unexpected+behavior+for+%23DB+exceptions+that+are+deferred+by+MOV+SS+or+POP+SS%2C+as+demonstrated+by+%28for+example%29+privilege+escalation+in+Windows%2C+macOS%2C+some+Xen+configurations%2C+or+FreeBSD%2C+or+a+Linux+kernel+crash.+The+MOV+to+SS+and+POP+SS+instructions+inhibit+interrupts+%28including+NMIs%29%2C+data+breakpoints%2C+and+single+step+trap+exceptions+until+the+instruction+boundary+following+the+next+instruction+%28SDM+Vol.+3A%3B+section+6.8.3%29.+%28The+inhibited+data+breakpoints+are+those+on+memory+accessed+by+the+MOV+to+SS+or+POP+to+SS+instruction+itself.%29+Note+that+debug+exceptions+are+not+inhibited+by+the+interrupt+enable+%28EFLAGS.IF%29+system+flag+%28SDM+Vol.+3A%3B+section+2.3%29.+If+the+instruction+following+the+MOV+to+SS+or+POP+to+SS+instruction+is+an+instruction+like+SYSCALL%2C+SYSENTER%2C+INT+3%2C+etc.+that+transfers+control+to+the+operating+system+at+CPL+%3C+3%2C+the+debug+exception+is+delivered+after+the+transfer+to+CPL+%3C+3+is+complete.+OS+kernels+may+not+expect+this+order+of+events+and+may+therefore+experience+unexpected+behavior+when+it+occurs.+%28CVE-2018-8897%29%0A%0AImpact%0A%0AThis+vulnerability+allows+for+a+disruption+of+service
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top