PT-2012-3819 · Linux+2 · Linux Kernel+2

Petr Matousek

Publicado

2012-05-17

Atualizado

2018-01-05

CVE-2012-2121

CVSS v2.0

4.9

Média

Vetor

AV:L/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.3.4

Description The issue is related to the KVM implementation in the Linux kernel, which does not properly manage the relationships between memory slots and the iommu. This allows guest OS users with administrative access to cause a denial of service, resulting in a memory leak and host OS crash, by conducting hotunplug and hotplug operations on devices.

Recommendations For Linux kernel versions prior to 3.3.4, update to version 3.3.4 or later to resolve the issue.

Correção

DoS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CESA-2012_0743

CVE-2012-2121

DSA-2668-1

RHSA-2012:0676

RHSA-2012:0743

RHSA-2012_0676

RHSA-2012_0743

USN-1260-1

USN-1457-1

USN-1470-1

USN-1471-1

USN-1472-1

USN-1473-1

USN-1474-1

USN-1476-1

USN-1577-1

USN-2036-1

USN-2037-1

Produtos afetados

Centos

Linux Kernel

Red Hat

PT-2012-3819 · Linux+2 · Linux Kernel+2

CVE-2012-2121

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 28