6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:N/I:N/A:C
0.004 Low
EPSS
Percentile
71.7%
The pit_ioport_read function in the Programmable Interval Timer (PIT)
emulation in i8254.c in KVM 83 does not properly use the pit_state data
structure, which allows guest OS users to cause a denial of service (host
OS crash or hang) by attempting to read the /dev/port file.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 8.04 | noarch | linux | < 2.6.24-27.68 | UNKNOWN |
ubuntu | 8.10 | noarch | linux | < 2.6.27-17.46 | UNKNOWN |
ubuntu | 9.04 | noarch | linux | < 2.6.28-18.60 | UNKNOWN |
ubuntu | 9.10 | noarch | linux | < 2.6.31-20.58 | UNKNOWN |
ubuntu | 9.10 | noarch | linux-ec2 | < 2.6.31-305.13 | UNKNOWN |
ubuntu | 9.10 | noarch | linux-fsl-imx51 | < 2.6.31-109.25 | UNKNOWN |
ubuntu | 9.10 | noarch | linux-mvl-dove | < 2.6.31-212.26 | UNKNOWN |