CVE-2011-2512

2011-07-0500:00:00

ubuntu.com

5.8 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

77.6%

JSON

The virtio_queue_notify in qemu-kvm 0.14.0 and earlier does not properly
validate the virtqueue number, which allows guest users to cause a denial
of service (guest crash) and possibly execute arbitrary code via a negative
number in the Queue Notify field of the Virtio Header, which bypasses a
signed comparison.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchqemu-kvm< 0.12.3+noroms-0ubuntu9.12UNKNOWN
ubuntu10.10noarchqemu-kvm< 0.12.5+noroms-0ubuntu7.8UNKNOWN
ubuntu11.04noarchqemu-kvm< 0.14.0+noroms-0ubuntu4.3UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	10.04	noarch	qemu-kvm	< 0.12.3+noroms-0ubuntu9.12	UNKNOWN
ubuntu	10.10	noarch	qemu-kvm	< 0.12.5+noroms-0ubuntu7.8	UNKNOWN
ubuntu	11.04	noarch	qemu-kvm	< 0.14.0+noroms-0ubuntu4.3	UNKNOWN