Lucene search
PRIOn knowledge basePRION:CVE-2009-3640HistoryOct 29, 2009 - 2:30 p.m.
Null pointer dereference
2009-10-2914:30:00
PRIOn knowledge base
www.prio-n.com
5
The update_cr8_intercept function in arch/x86/kvm/x86.c in the KVM subsystem in the Linux kernel before 2.6.32-rc1 does not properly handle the absence of an Advanced Programmable Interrupt Controller (APIC), which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly gain privileges via a call to the kvm_vcpu_ioctl function.
References
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=88c808fd42b53a7e01a2ac3253ef31fef74cb5af
www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.32-rc1
www.securityfocus.com/bid/36805
exchange.xforce.ibmcloud.com/vulnerabilities/53947
marc.info/?l=oss-security&m=125626965020571&w=2
marc.info/?l=oss-security&m=125640417219385&w=2
Related
ubuntucve
ubuntucve
CVE-2009-3640
2009-10-29 00:00:00
cvelist
cvelist
CVE-2009-3640
2009-10-29 14:00:00
redhatcve
redhatcve
CVE-2009-3640
2015-10-30 09:57:36
nvd
nvd
CVE-2009-3640
2009-10-29 14:30:01
cve
cve
CVE-2009-3640
2009-10-29 14:30:01
nessus
nessus
openSUSE Security Update : kvm (kvm-1547)
2009-11-23 00:00:00
SuSE 11 Security Update : KVM (SAT Patch Number 1553)
2009-11-23 00:00:00
openSUSE Security Update : kvm (kvm-1545)
2009-11-23 00:00:00
openvas
openvas
SLES11: Security update for KVM
2009-11-23 00:00:00
SLES11: Security update for KVM
2009-11-23 00:00:00