Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-4461
HistoryJan 22, 2013 - 11:55 p.m.

CVE-2012-4461

2013-01-2223:55:02
[email protected]
web.nvd.nist.gov
6

CVSS2

1.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:N/A:P

AI Score

5.2

Confidence

High

EPSS

0

Percentile

5.1%

JSON

The KVM subsystem in the Linux kernel before 3.6.9, when running on hosts that use qemu userspace without XSAVE, allows local users to cause a denial of service (kernel OOPS) by using the KVM_SET_SREGS ioctl to set the X86_CR4_OSXSAVE bit in the guest cr4 register, then calling the KVM_RUN ioctl.

Affected configurations

Nvd
Node
linuxlinux_kernelRange3.6.8
OR
linuxlinux_kernelMatch3.6
OR
linuxlinux_kernelMatch3.6.1
OR
linuxlinux_kernelMatch3.6.2
OR
linuxlinux_kernelMatch3.6.3
OR
linuxlinux_kernelMatch3.6.4
OR
linuxlinux_kernelMatch3.6.5
OR
linuxlinux_kernelMatch3.6.6
OR
linuxlinux_kernelMatch3.6.7
VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel3.6cpe:2.3:o:linux:linux_kernel:3.6:*:*:*:*:*:*:*
linuxlinux_kernel3.6.1cpe:2.3:o:linux:linux_kernel:3.6.1:*:*:*:*:*:*:*
linuxlinux_kernel3.6.2cpe:2.3:o:linux:linux_kernel:3.6.2:*:*:*:*:*:*:*
linuxlinux_kernel3.6.3cpe:2.3:o:linux:linux_kernel:3.6.3:*:*:*:*:*:*:*
linuxlinux_kernel3.6.4cpe:2.3:o:linux:linux_kernel:3.6.4:*:*:*:*:*:*:*
linuxlinux_kernel3.6.5cpe:2.3:o:linux:linux_kernel:3.6.5:*:*:*:*:*:*:*
linuxlinux_kernel3.6.6cpe:2.3:o:linux:linux_kernel:3.6.6:*:*:*:*:*:*:*
linuxlinux_kernel3.6.7cpe:2.3:o:linux:linux_kernel:3.6.7:*:*:*:*:*:*:*

Related

fedora 13
cve 1
cvelist 1
nessus 23
ubuntucve 1
prion 1
debiancve 1
f5 2
ubuntu 8
openvas 52
centos 1
oraclelinux 4
securityvulns 2
redhat 2
amazon 1
suse 2
osv 1
debian 1
fedora
fedora
[SECURITY] Fedora 18 Update: kernel-3.6.7-5.fc18
2012-11-27 04:42:31
[SECURITY] Fedora 17 Update: kernel-3.6.7-4.fc17
2012-11-22 03:52:25
[SECURITY] Fedora 17 Update: kernel-3.6.8-2.fc17
2012-12-01 08:28:13
cve
cve
CVE-2012-4461
2013-01-22 23:55:02
cvelist
cvelist
CVE-2012-4461
2013-01-22 23:00:00
nessus
nessus
Fedora 16 : kernel-3.6.7-4.fc16 (2012-18691)
2012-11-29 00:00:00
Fedora 17 : kernel-3.6.7-4.fc17 (2012-18684)
2012-11-23 00:00:00
F5 Networks BIG-IP : Linux kernel vulnerability (SOL15797)
2014-11-06 00:00:00
ubuntucve
ubuntucve
CVE-2012-4461
2012-11-06 00:00:00
prion
prion
Design/Logic Flaw
2013-01-22 23:55:00
debiancve
debiancve
CVE-2012-4461
2013-01-22 23:55:02
f5
f5
SOL15797 - Linux kernel vulnerability CVE-2012-4461
2014-11-05 00:00:00
K15797 : Linux kernel vulnerability CVE-2012-4461
2014-11-06 00:00:00
ubuntu
ubuntu
Linux kernel (Oneiric backport) vulnerabilities
2013-01-15 00:00:00
Linux kernel vulnerabilities
2013-01-15 00:00:00
Linux kernel regression
2013-02-01 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1688-1)
2013-01-15 00:00:00
Ubuntu Update for linux-lts-backport-oneiric USN-1688-1
2013-01-15 00:00:00
Ubuntu Update for linux USN-1689-1
2013-01-15 00:00:00
centos
centos
kernel, perf, python security update
2013-02-06 10:28:29
oraclelinux
oraclelinux
kernel security and bug fix update
2013-02-05 00:00:00
Unbreakable Enterprise kernel security update
2013-02-07 00:00:00
Oracle Linux 6 kernel security and bugfix update
2013-02-27 00:00:00
securityvulns
securityvulns
[USN-1696-1] Linux kernel vulnerabilities
2013-01-21 00:00:00
Linux kernel security vulnerabilities
2013-01-21 00:00:00
redhat
redhat
(RHSA-2013:0223) Moderate: kernel security and bug fix update
2013-02-05 00:00:00
(RHSA-2013:0882) Important: kernel security and bug fix update
2013-05-30 00:00:00
amazon
amazon
Medium: kernel
2013-03-02 16:54:00
suse
suse
kernel: security and bugfix update (important)
2013-06-10 17:23:00
Security update for Linux kernel (important)
2013-05-14 14:04:45
osv
osv
linux-2.6 - several
2013-05-14 00:00:00
debian
debian
[SECURITY] [DSA 2668-1] linux-2.6 security update
2013-05-14 19:14:29

CVSS2

1.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:N/A:P

AI Score

5.2

Confidence

High

EPSS

0

Percentile

5.1%

JSON
Related for NVD:CVE-2012-4461
fedora13cve1cvelist1nessus23ubuntucve1prion1debiancve1f52ubuntu8openvas52centos1oraclelinux4securityvulns2redhat2amazon1suse2osv1debian1