VYPR
High severity7.8NVD Advisory· Published Oct 11, 2017· Updated Jun 17, 2026

CVE-2017-12188

CVE-2017-12188

Description

arch/x86/kvm/mmu.c in the Linux kernel through 4.13.5, when nested virtualisation is used, does not properly traverse guest pagetable entries to resolve a guest virtual address, which allows L1 guest OS users to execute arbitrary code on the host OS or cause a denial of service (incorrect index during page walking, and host OS crash), aka an "MMU potential stack buffer overrun."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Linux/Kernel2 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=4.6,<4.9.57
    • (no CPE)range: <=4.13.5

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.