2 matches found
CVE-2009-2406
CVE-2009-2406 refers to a stack-based buffer overflow in the parse_tag_11_packet function in fs/ecryptfs/keystore.c of the Linux kernel before 2.6.30.4. The issue arises from not ensuring that the key signature length in a Tag 11 packet is compatible with the key signature buffer size, enabling l...
CVE-2010-0309
The CVE concerns the pit_ioport_read function in the PIT emulation (i8254.c) of KVM 83, where improper use of the pit_state data structure can be exploited by a guest to trigger a host denial-of-service (host crash or hang) by reading /dev/port. Affected component is KVM's PIT emulation; impact i...