{ "threat_severity" : "Important", "public_date" : "2019-11-12T18:00:00Z", "bugzilla" : { "description" : "hw: Machine Check Error on Page Size Change (IFU)", "id" : "1646768", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1646768" }, "cvss3" : { "cvss3_base_score" : "6.5", "cvss3_scoring_vector" : "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H", "status" : "verified" }, "cwe" : "CWE-226", "details" : [ "Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host system via local access.", "A flaw was found in the way Intel CPUs handle inconsistency between, virtual to physical memory address translations in CPU's local cache and system software's Paging structure entries. A privileged guest user may use this flaw to induce a hardware Machine Check Error on the host processor, resulting in a severe DoS scenario by halting the processor.\nSystem software like OS OR Virtual Machine Monitor (VMM) use virtual memory system for storing program instructions and data in memory. Virtual Memory system uses Paging structures like Page Tables and Page Directories to manage system memory. The processor's Memory Management Unit (MMU) uses Paging structure entries to translate program's virtual memory addresses to physical memory addresses. The processor stores these address translations into its local cache buffer called - Translation Lookaside Buffer (TLB). TLB has two parts, one for instructions and other for data addresses.\nSystem software can modify its Paging structure entries to change address mappings OR certain attributes like page size etc. Upon such Paging structure alterations in memory, system software must invalidate the corresponding address translations in the processor's TLB cache. But before this TLB invalidation takes place, a privileged guest user may trigger an instruction fetch operation, which could use an already cached, but now invalid, virtual to physical address translation from Instruction TLB (ITLB). Thus accessing an invalid physical memory address and resulting in halting the processor due to the Machine Check Error (MCE) on Page Size Change." ], "acknowledgement" : "Red Hat would like to thank Intel for reporting this issue. Upstream acknowledges Deepak Gupta as the original reporter.", "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 6", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3836", "cpe" : "cpe:/o:redhat:enterprise_linux:6", "package" : "kernel-0:2.6.32-754.24.2.el6" }, { "product_name" : "Red Hat Enterprise Linux 6.5 Advanced Update Support", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3843", "cpe" : "cpe:/o:redhat:rhel_aus:6.5", "package" : "kernel-0:2.6.32-431.96.3.el6" }, { "product_name" : "Red Hat Enterprise Linux 6.6 Advanced Update Support", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3842", "cpe" : "cpe:/o:redhat:rhel_aus:6.6", "package" : "kernel-0:2.6.32-504.81.3.el6" }, { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3835", "cpe" : "cpe:/a:redhat:rhel_extras_rt:7", "package" : "kernel-rt-0:3.10.0-1062.4.2.rt56.1028.el7" }, { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3834", "cpe" : "cpe:/o:redhat:enterprise_linux:7", "package" : "kernel-0:3.10.0-1062.4.2.el7" }, { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2020-01-06T00:00:00Z", "advisory" : "RHSA-2020:0028", "cpe" : "cpe:/o:redhat:enterprise_linux:7", "package" : "kpatch-patch" }, { "product_name" : "Red Hat Enterprise Linux 7.2 Advanced Update Support", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3841", "cpe" : "cpe:/o:redhat:rhel_aus:7.2", "package" : "kernel-0:3.10.0-327.82.2.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.2 Telco Extended Update Support", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3841", "cpe" : "cpe:/o:redhat:rhel_tus:7.2", "package" : "kernel-0:3.10.0-327.82.2.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3841", "cpe" : "cpe:/o:redhat:rhel_e4s:7.2", "package" : "kernel-0:3.10.0-327.82.2.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.3 Advanced Update Support", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3840", "cpe" : "cpe:/o:redhat:rhel_aus:7.3", "package" : "kernel-0:3.10.0-514.70.2.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.3 Telco Extended Update Support", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3840", "cpe" : "cpe:/o:redhat:rhel_tus:7.3", "package" : "kernel-0:3.10.0-514.70.2.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3840", "cpe" : "cpe:/o:redhat:rhel_e4s:7.3", "package" : "kernel-0:3.10.0-514.70.2.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.4 Advanced Update Support", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3839", "cpe" : "cpe:/o:redhat:rhel_aus:7.4", "package" : "kernel-0:3.10.0-693.60.2.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.4 Telco Extended Update Support", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3839", "cpe" : "cpe:/o:redhat:rhel_tus:7.4", "package" : "kernel-0:3.10.0-693.60.2.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3839", "cpe" : "cpe:/o:redhat:rhel_e4s:7.4", "package" : "kernel-0:3.10.0-693.60.2.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.5 Extended Update Support", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3838", "cpe" : "cpe:/o:redhat:rhel_eus:7.5", "package" : "kernel-0:3.10.0-862.43.2.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.6 Extended Update Support", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3837", "cpe" : "cpe:/o:redhat:rhel_eus:7.6", "package" : "kernel-0:3.10.0-957.38.2.el7" }, { "product_name" : "Red Hat Enterprise Linux 7.6 Extended Update Support", "release_date" : "2020-01-06T00:00:00Z", "advisory" : "RHSA-2020:0026", "cpe" : "cpe:/o:redhat:rhel_eus:7.6", "package" : "kpatch-patch" }, { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3833", "cpe" : "cpe:/a:redhat:enterprise_linux:8::nfv", "package" : "kernel-rt-0:4.18.0-147.0.2.rt24.94.el8_1" }, { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3832", "cpe" : "cpe:/o:redhat:enterprise_linux:8", "package" : "kernel-0:4.18.0-147.0.2.el8_1" }, { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2019-11-22T00:00:00Z", "advisory" : "RHSA-2019:3936", "cpe" : "cpe:/o:redhat:enterprise_linux:8", "package" : "kpatch-patch" }, { "product_name" : "Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions", "release_date" : "2020-01-22T00:00:00Z", "advisory" : "RHSA-2020:0204", "cpe" : "cpe:/o:redhat:rhel_e4s:8.0", "package" : "kernel-0:4.18.0-80.15.1.el8_0" }, { "product_name" : "Red Hat Enterprise MRG 2", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3844", "cpe" : "cpe:/a:redhat:enterprise_mrg:2:server:el6", "package" : "kernel-rt-1:3.10.0-693.60.2.rt56.655.el6rt" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "release_date" : "2019-11-21T00:00:00Z", "advisory" : "RHSA-2019:3941", "cpe" : "cpe:/a:redhat:openshift:4.1", "package" : "machine-os-content-container" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "release_date" : "2019-11-19T00:00:00Z", "advisory" : "RHSA-2019:3916", "cpe" : "cpe:/a:redhat:openshift:4.2", "package" : "machine-os-content-container" }, { "product_name" : "Red Hat Virtualization 4.2 for Red Hat Enterprise Linux 7.6 EUS", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3837", "cpe" : "cpe:/o:redhat:enterprise_linux:7::hypervisor", "package" : "kernel-0:3.10.0-957.38.2.el7" }, { "product_name" : "Red Hat Virtualization 4.2 for Red Hat Enterprise Linux 7.6 EUS", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3860", "cpe" : "cpe:/o:redhat:enterprise_linux:7::hypervisor", "package" : "redhat-virtualization-host-0:4.2-20191107.0.el7_6" }, { "product_name" : "Red Hat Virtualization 4 for Red Hat Enterprise Linux 7", "release_date" : "2019-11-12T00:00:00Z", "advisory" : "RHSA-2019:3860", "cpe" : "cpe:/o:redhat:enterprise_linux:7::hypervisor", "package" : "redhat-virtualization-host-0:4.3.6-20191108.0.el7_7" } ], "package_state" : [ { "product_name" : "Red Hat Enterprise Linux 5", "fix_state" : "Will not fix", "package_name" : "kernel", "cpe" : "cpe:/o:redhat:enterprise_linux:5" }, { "product_name" : "Red Hat Enterprise Linux 7", "fix_state" : "Not affected", "package_name" : "kernel-alt", "cpe" : "cpe:/o:redhat:enterprise_linux:7" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2018-12207\nhttps://nvd.nist.gov/vuln/detail/CVE-2018-12207\nhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00210.html" ], "csaw" : true, "name" : "CVE-2018-12207", "mitigation" : { "value" : "For mitigation related information, please refer to the Red Hat vulnerability article: https://access.redhat.com/security/vulnerabilities/ifu-page-mce .", "lang" : "en:us" } }