Ubuntu Security Notice USN-6004-1

Ubuntu Security Notice 6004-1 - It was discovered that the KVM VMX implementation in the Linux kernel did not properly handle indirect branch prediction isolation between L1 and L2 VMs. An attacker in a guest VM could use this to expose sensitive information from the host OS or other guest VMs. It was discovered that a use-after-free vulnerability existed in the SGI GRU driver in the Linux kernel. A local attacker could possibly use this to cause a denial of …

code denial of service driver free gru host information isolation kernel linux linux kernel local notice prediction security security notice sensitive information service sgi ubuntu use-after-free usn vms vmx vulnerability