Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-4031
HistoryNov 29, 2009 - 1:07 p.m.

CVE-2009-4031

2009-11-2913:07:32
CWE-20
[email protected]
web.nvd.nist.gov
51
6
cve-2009-4031
linux kernel
kvm subsystem
x86 emulator
denial of service
nvd

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.5

Confidence

High

EPSS

0.002

Percentile

61.3%

JSON

The do_insn_fetch function in arch/x86/kvm/emulate.c in the x86 emulator in the KVM subsystem in the Linux kernel before 2.6.32-rc8-next-20091125 tries to interpret instructions that contain too many bytes to be valid, which allows guest OS users to cause a denial of service (increased scheduling latency) on the host OS via unspecified manipulations related to SMP support.

Affected configurations

NVD
Node
linuxlinux_kernelRange<2.6.32
OR
linuxlinux_kernelMatch2.6.32-
OR
linuxlinux_kernelMatch2.6.32rc1
OR
linuxlinux_kernelMatch2.6.32rc2
OR
linuxlinux_kernelMatch2.6.32rc3
OR
linuxlinux_kernelMatch2.6.32rc4
OR
linuxlinux_kernelMatch2.6.32rc5
OR
linuxlinux_kernelMatch2.6.32rc6
OR
linuxlinux_kernelMatch2.6.32rc7
VendorProductVersionCPE
linuxlinux_kernel2.6.32cpe:/o:linux:linux_kernel:2.6.32:-::
linuxlinux_kernel2.6.32cpe:/o:linux:linux_kernel:2.6.32:rc6::
linuxlinux_kernel2.6.32cpe:/o:linux:linux_kernel:2.6.32:rc3::
linuxlinux_kernel2.6.32cpe:/o:linux:linux_kernel:2.6.32:rc2::
linuxlinux_kernel2.6.32cpe:/o:linux:linux_kernel:2.6.32:rc5::
linuxlinux_kernel2.6.32cpe:/o:linux:linux_kernel:2.6.32:rc4::
linuxlinux_kernel2.6.32cpe:/o:linux:linux_kernel:2.6.32:rc7::
linuxlinux_kernel2.6.32cpe:/o:linux:linux_kernel:2.6.32:rc1::

Social References

More

Related

openvas 10
centos 1
nvd 1
nessus 8
seebug 1
prion 1
redhat 2
cvelist 1
ubuntucve 1
oraclelinux 2
securityvulns 2
osv 1
debian 1
suse 1
ubuntu 1
fedora 1
openvas
openvas
CentOS Security Advisory CESA-2009:1659 (kvm)
2009-12-30 00:00:00
RedHat Security Advisory RHSA-2009:1659
2009-12-14 00:00:00
CentOS Security Advisory CESA-2009:1659 (kvm)
2009-12-30 00:00:00
centos
centos
kmod, kvm security update
2009-12-18 01:52:42
nvd
nvd
CVE-2009-4031
2009-11-29 13:07:32
nessus
nessus
CentOS 5 : kvm (CESA-2009:1659)
2010-01-06 00:00:00
Scientific Linux Security Update : kvm on SL5.4 x86_64
2012-08-01 00:00:00
Oracle Linux 5 : kvm (ELSA-2009-1659)
2013-07-12 00:00:00
seebug
seebug
Linux kernel 2.6.x KVM袅倧SMPζŒ‡δ»€ζœ¬εœ°ζ‹’η»ζœεŠ‘ζΌζ΄ž
2010-03-24 00:00:00
prion
prion
Design/Logic Flaw
2009-11-29 13:07:00
redhat
redhat
(RHSA-2009:1659) Moderate: kvm security and bug fix update
2009-12-09 00:00:00
(RHSA-2009:1692) Important: rhev-hypervisor security and bug fix update
2009-12-23 00:00:00
cvelist
cvelist
CVE-2009-4031
2009-11-27 19:00:00
ubuntucve
ubuntucve
CVE-2009-4031
2009-11-29 00:00:00
oraclelinux
oraclelinux
kvm security and bug fix update
2009-12-09 00:00:00
kvm security, bug fix and enhancement update
2010-04-05 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA-1962-1] New kvm packages fix several vulnerabilities
2009-12-23 00:00:00
kvm virtualization multiple security vulnerabilities
2009-12-23 00:00:00
osv
osv
kvm - several vulnerabilities
2009-12-23 00:00:00
debian
debian
[SECURITY] [DSA-1962-1] New kvm packages fix several vulnerabilities
2009-12-23 11:54:01
suse
suse
local privilege escalation, local information in kernel
2010-03-22 16:33:19
ubuntu
ubuntu
Linux kernel vulnerabilities
2010-02-05 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: kernel-2.6.27.41-170.2.117.fc10
2009-12-11 18:26:18

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.5

Confidence

High

EPSS

0.002

Percentile

61.3%

JSON
Related for CVE-2009-4031
openvas10centos1nvd1nessus8seebug1prion1redhat2cvelist1ubuntucve1oraclelinux2securityvulns2osv1debian1suse1ubuntu1fedora1