CVE-2009-4031

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.32-rc8-next-20091125

Description The issue is related to the x86 emulator in the KVM subsystem of the Linux kernel. It allows guest OS users to cause a denial of service, specifically increased scheduling latency, on the host OS. This is achieved through manipulations related to SMP support, where the do insn fetch function attempts to interpret instructions with too many bytes to be valid.

Recommendations For Linux kernel versions prior to 2.6.32-rc8-next-20091125, update to version 2.6.32-rc8-next-20091125 or later to resolve the issue.

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2009-4031

DSA-1962-1

RHSA-2009:1659

RHSA-2009:1692

RHSA-2009_1659

Affected Products

Linux Kernel

Red Hat

CVE-2009-4031

Weakness Enumeration

Related Identifiers

Affected Products

References · 13