CVE-2012-2121

2012-05-1700:00:00

ubuntu.com

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

25.6%

JSON

The KVM implementation in the Linux kernel before 3.3.4 does not properly
manage the relationships between memory slots and the iommu, which allows
guest OS users to cause a denial of service (memory leak and host OS crash)
by leveraging administrative access to the guest OS to conduct hotunplug
and hotplug operations on devices.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchlinux< 2.6.32-54.116UNKNOWN
ubuntu11.04noarchlinux< 2.6.38-15.60UNKNOWN
ubuntu11.10noarchlinux< 3.0.0-21.35UNKNOWN
ubuntu12.04noarchlinux< 3.2.0-25.40UNKNOWN
ubuntu12.04noarchlinux-armadaxp< 3.2.0-1605.8UNKNOWN
ubuntu10.04noarchlinux-ec2< 2.6.32-359.72UNKNOWN
ubuntu10.04noarchlinux-lts-backport-natty< 2.6.38-15.60~lucid1UNKNOWN
ubuntu10.04noarchlinux-lts-backport-oneiric< 3.0.0-21.35~lucid1UNKNOWN
ubuntu11.04noarchlinux-ti-omap4< 2.6.38-1209.26UNKNOWN
ubuntu11.10noarchlinux-ti-omap4< 3.0.0-1211.23UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	10.04	noarch	linux	< 2.6.32-54.116	UNKNOWN
ubuntu	11.04	noarch	linux	< 2.6.38-15.60	UNKNOWN
ubuntu	11.10	noarch	linux	< 3.0.0-21.35	UNKNOWN
ubuntu	12.04	noarch	linux	< 3.2.0-25.40	UNKNOWN
ubuntu	12.04	noarch	linux-armadaxp	< 3.2.0-1605.8	UNKNOWN
ubuntu	10.04	noarch	linux-ec2	< 2.6.32-359.72	UNKNOWN
ubuntu	10.04	noarch	linux-lts-backport-natty	< 2.6.38-15.60~lucid1	UNKNOWN
ubuntu	10.04	noarch	linux-lts-backport-oneiric	< 3.0.0-21.35~lucid1	UNKNOWN
ubuntu	11.04	noarch	linux-ti-omap4	< 2.6.38-1209.26	UNKNOWN
ubuntu	11.10	noarch	linux-ti-omap4	< 3.0.0-1211.23	UNKNOWN