Description
Buffer overflow in the kvm_vcpu_ioctl_x86_setup_mce function in arch/x86/kvm/x86.c in the KVM subsystem in the Linux kernel before 2.6.32-rc7 allows local users to cause a denial of service (memory corruption) or possibly gain privileges via a KVM_X86_SETUP_MCE IOCTL request that specifies a large number of Machine Check Exception (MCE) banks.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- Linux / Linux kernel2.6.31.14
- Linux / Linux kernel2.6.32 – 2.6.32
- Linux / Linux kernel2.6.32 – 2.6.32
- Linux / Linux kernel2.6.32 – 2.6.32
- Linux / Linux kernel2.6.32 – 2.6.32
- Linux / Linux kernel2.6.32 – 2.6.32
- Linux / Linux kernel2.6.32 – 2.6.32
- Linux / Linux kernel2.6.32 – 2.6.32
References
- MISChttp://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.32-rc7
- MISChttp://www.securityfocus.com/bid/37035
- MISChttp://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a9e38c3e01ad242fe2a625354cf065c34b01e3aa
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/3267
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/54302
- VENDOR_ADVISORYhttp://secunia.com/advisories/37357