CVE-2013-1798

2013-03-22T07:59:11
ID CVE-2013-1798
Type cve
Reporter NVD
Modified 2014-01-27T23:51:57

Description

The ioapic_read_indirect function in virt/kvm/ioapic.c in the Linux kernel through 3.8.4 does not properly handle a certain combination of invalid IOAPIC_REG_SELECT and IOAPIC_REG_WINDOW operations, which allows guest OS users to obtain sensitive information from host OS memory or cause a denial of service (host OS OOPS) via a crafted application.