CVE-2016-8630

Updated: 2023-12-06

CWE: Improper Access Control

Description:

The x86_decode_insn function in arch/x86/kvm/emulate.c in the Linux kernel before 4.8.7, when KVM is enabled, allows local users to cause a denial of service (host OS crash) via a certain use of a ModR/M byte in an undefined instruction.

CVSS3: 5.5

Vendor State

OS	Vendor version	Errata
RHEL 7	3.10.0-514.10.2.el7	RHSA-2017:0386
Ubuntu 16.04	4.4.0-57.78	USN-3161-1
Ubuntu 14.04 HWE	4.4.0-57.78~14.04.1	USN-3161-2
CentOS 7	3.10.0-514.10.2.el7	CESA-2017:0386
CentOS 7 plus	3.10.0-514.10.2.el7.centos.plus	CESA-2017:0386
Oracle Linux 7	3.10.0-514.10.2.0.1.el7	ELSA-2017-0386-1

KernelCare State

OS	Original kernel version	State
RHEL 7	3.10.0-514.6.1.el7 show all hide all 3.10.0-327.18.2.el7 3.10.0-327.4.5.el7 3.10.0-327.3.1.el7 3.10.0-327.36.3.el7 3.10.0-327.36.2.el7 3.10.0-327.36.1.el7 3.10.0-327.13.1.el7 3.10.0-327.4.4.el7 3.10.0-514.2.2.el7 3.10.0-327.22.2.el7 3.10.0-327.28.2.el7 3.10.0-327.10.1.el7 3.10.0-327.28.3.el7 3.10.0-327.el7 3.10.0-514.el7 3.10.0-514.6.2.el7	Released
Ubuntu 16.04	4.4.0-34.53 show all hide all 4.4.0-22.40 4.4.0-31.50 4.4.0-28.47 4.4.0-24.43 4.4.0-38.57 4.4.0-47.68 4.4.0-22.39 4.4.0-42.62 4.4.0-51.72 4.4.0-53.74 4.4.0-36.55 4.4.0-21.37 4.4.0-23.41 4.4.0-43.63 4.4.0-45.66	Released
Ubuntu 14.04 HWE	4.4.0-34.53~14.04.1 show all hide all 4.4.0-51.72~14.04.1 4.4.0-53.74~14.04.1 4.4.0-28.47~14.04.1 4.4.0-24.43~14.04.1 4.4.0-47.68~14.04.1 4.4.0-31.50~14.04.1 4.4.0-38.57~14.04.1 4.4.0-42.62~14.04.1 4.4.0-22.40~14.04.1 4.4.0-21.37~14.04.1 4.4.0-23.41~14.04.1 4.4.0-36.55~14.04.1 4.4.0-22.39~14.04.1 4.4.0-45.66~14.04.1	Released
CentOS 7	3.10.0-327.3.1.el7 show all hide all 3.10.0-327.36.3.el7 3.10.0-327.36.2.el7 3.10.0-327.10.1.el7 3.10.0-327.28.2.el7 3.10.0-514.6.2.el7 3.10.0-327.el7 3.10.0-327.22.2.el7 3.10.0-327.18.2.el7 3.10.0-514.6.1.el7 3.10.0-327.13.1.el7 3.10.0-327.4.4.el7 3.10.0-514.2.2.el7 3.10.0-327.28.3.el7 3.10.0-327.36.1.el7 3.10.0-514.el7 3.10.0-327.4.5.el7	Released
CentOS 7 plus	3.10.0-327.28.2.el7.centos.plus show all hide all 3.10.0-327.36.3.el7.centos.plus 3.10.0-327.22.2.el7.centos.plus 3.10.0-327.36.2.el7.centos.plus 3.10.0-514.el7.centos.plus 3.10.0-327.10.1.el7.centos.plus 3.10.0-327.28.3.el7.centos.plus 3.10.0-514.6.1.el7.centos.plus 3.10.0-327.13.1.el7.centos.plus 3.10.0-514.2.2.el7.centos.plus 3.10.0-327.4.4.el7.centos.plus 3.10.0-327.18.2.el7.centos.plus 3.10.0-327.36.1.el7.centos.plus 3.10.0-327.el7.centos.plus 3.10.0-327.3.1.el7.centos.plus 3.10.0-327.4.5.el7.centos.plus 3.10.0-514.6.2.el7.centos.plus	Released
Oracle Linux 7	3.10.0-327.4.5.el7 show all hide all 3.10.0-327.36.3.el7 3.10.0-327.18.2.el7 3.10.0-327.36.2.el7 3.10.0-327.28.3.el7 3.10.0-327.3.1.el7 3.10.0-327.10.1.el7 3.10.0-514.el7 3.10.0-327.13.1.el7 3.10.0-327.4.4.el7 3.10.0-514.2.2.el7 3.10.0-514.6.2.el7 3.10.0-327.22.2.el7 3.10.0-327.28.2.el7 3.10.0-327.el7 3.10.0-514.6.1.el7 3.10.0-327.36.1.el7	Released
CloudLinux OS 7	3.10.0-427.18.2.lve1.4.24.el7 show all hide all 3.10.0-427.10.1.lve1.4.19.el7 3.10.0-427.10.1.lve1.4.22.el7 3.10.0-427.18.2.lve1.4.27.el7 3.10.0-427.18.2.lve1.4.38.el7 3.10.0-427.36.1.lve1.4.37.el7 3.10.0-427.10.1.lve1.4.7.el7	Released
CloudLinux OS 6h	3.10.0-427.18.2.lve1.4.24.el6h show all hide all 3.10.0-427.18.2.lve1.4.27.el6h 3.10.0-427.18.2.lve1.4.38.el6h 3.10.0-427.36.1.lve1.4.32.el6h 3.10.0-427.36.1.lve1.4.37.el6h	Released
Endurance 6 elrepo		Ready For Release
OEL 7 Dell		Ready For Release
Endurance 7 eig 3.10		Ready For Release
Debian 10 cloud		Will Not Fix
Debian 9 backports		Will Not Fix