I wonder if the recently found CVE-2016-5195 can be used to break out of KVM or OpenVZ virtualization to gain access to the host system?
Basically, I believe that the local privileges can not be used for that because an attacker would need to have access to the host system.
It's clear for me that the attack could be used inside of a container if the kernel isn't patched.
Looking at this github page and this RedHat page it seems that the attacker can write to /proc/self/mem and ptrace files.
The ACL that will be affected is the ACL of the VM and not the host machine. This means that the files that are shared between the host machine and the VM (remember the VMWare file sharing bugs) will remain vulnerable. Apart from that, I don't think the host machines will get affected.
