4.7 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
0.002 Low
EPSS
Percentile
55.6%
The em_syscall function in arch/x86/kvm/emulate.c in the KVM implementation
in the Linux kernel before 3.2.14 does not properly handle the 0f05 (aka
syscall) opcode, which allows guest OS users to cause a denial of service
(guest OS crash) via a crafted application, as demonstrated by an NASM
file.
Author | Note |
---|---|
apw | introduced by: e66bb2ccdcf76d032bbb464b35c292bb3ee58f9b current patches appear to be on github but not approved and merged: https://github.com/baerwolf/linux-stephan/commit/a5fad9d83c19a4af9f41b48d78eb1688c8289c7e now upstream (see below) |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | linux | < 2.6.32-41.88 | UNKNOWN |
ubuntu | 10.10 | noarch | linux | < 2.6.35-32.68 | UNKNOWN |
ubuntu | 11.04 | noarch | linux | < 2.6.38-14.58 | UNKNOWN |
ubuntu | 11.10 | noarch | linux | < 3.0.0-18.31 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-ec2 | < 2.6.32-345.47 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-lts-backport-maverick | < 2.6.35-32.68~lucid1 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-lts-backport-natty | < 2.6.38-14.58~lucid1 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-lts-backport-oneiric | < 3.0.0-18.31~lucid1 | UNKNOWN |
www.openwall.com/lists/oss-security/2012/01/11/4
www.spinics.net/lists/kvm/msg66633.html
launchpad.net/bugs/cve/CVE-2012-0045
lkml.org/lkml/2011/12/28/170
nvd.nist.gov/vuln/detail/CVE-2012-0045
security-tracker.debian.org/tracker/CVE-2012-0045
ubuntu.com/security/notices/USN-1405-1
ubuntu.com/security/notices/USN-1406-1
ubuntu.com/security/notices/USN-1407-1
ubuntu.com/security/notices/USN-1421-1
ubuntu.com/security/notices/USN-1422-1
ubuntu.com/security/notices/USN-1425-1
ubuntu.com/security/notices/USN-1426-1
ubuntu.com/security/notices/USN-1431-1
ubuntu.com/security/notices/USN-1433-1
ubuntu.com/security/notices/USN-1440-1
www.cve.org/CVERecord?id=CVE-2012-0045