CVE-2013-6368 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6368): The KVM subsystem in the Linux kernel through 3.12.5 allows local users to gain privileges or cause a denial of service (system crash) via a VAPIC synchronization operation involving a page-end address.
In 3.13 onward: https://github.com/torvalds/linux/commit/fda4e2e85589191b123d31cdc21fd33ee70f50fd