Published: 22/01/2013 Updated: 13/02/2023

CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4

VMScore: 614

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Buffer overflow in virt/kvm/irq_comm.c in the KVM subsystem in the Linux kernel prior to 3.2.24 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to Message Signaled Interrupts (MSI), irq routing entries, and an incorrect check by the setup_routing_entry function before invoking the kvm_set_irq function.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 3.2.21
linux linux kernel 3.0.25
linux linux kernel 3.1.2
linux linux kernel 3.2.19
linux linux kernel 3.0.22
linux linux kernel 3.0.5
linux linux kernel 3.2.18
linux linux kernel 3.2.5
linux linux kernel 3.0.18
linux linux kernel 3.0.6
linux linux kernel 3.0.11
linux linux kernel 3.0.34
linux linux kernel 3.0.32
linux linux kernel 3.2.16
linux linux kernel 3.0.19
linux linux kernel 3.0.4
linux linux kernel 3.0.27
linux linux kernel 3.2.11
linux linux kernel 3.0.23
linux linux kernel 3.2.10
linux linux kernel 3.0.8
linux linux kernel 3.2.14
linux linux kernel 3.0.33
linux linux kernel 3.0.28
linux linux kernel 3.2.4
linux linux kernel 3.0.13
linux linux kernel 3.2.9
linux linux kernel 3.0.10
linux linux kernel 3.2.15
linux linux kernel 3.0.1
linux linux kernel 3.1.6
linux linux kernel 3.2.20
linux linux kernel 3.2.6
linux linux kernel 3.2.2
linux linux kernel 3.0.17
linux linux kernel 3.1.3
linux linux kernel 3.1.9
linux linux kernel 3.0.16
linux linux kernel 3.2.13
linux linux kernel 3.0.21
linux linux kernel 3.0.7
linux linux kernel 3.1.5
linux linux kernel 3.1.8
linux linux kernel 3.2.1
linux linux kernel 3.2.7
linux linux kernel 3.0.20
linux linux kernel 3.0.24
linux linux kernel 3.0.15
linux linux kernel 3.0.2
linux linux kernel
linux linux kernel 3.1.7
linux linux kernel 3.1.1
linux linux kernel 3.0.12
linux linux kernel 3.2.22
linux linux kernel 3.2.17
linux linux kernel 3.2.8
linux linux kernel 3.1.10
linux linux kernel 3.0.3
linux linux kernel 3.0.9
linux linux kernel 3.0.26
linux linux kernel 3.1.4
linux linux kernel 3.0.30
linux linux kernel 3.0.31
linux linux kernel 3.0.29
linux linux kernel 3.2.12
linux linux kernel 3.0.14
linux linux kernel 3.2.3

Several security issues were fixed in the kernel ...

The system could be made to crash under certain conditions ...

Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix multiple security issues and several bugsare now available for Red Hat Enterprise Linux 6The Red Hat Security Response Team has rated this update as havingimportant secur ...

Several security issues were fixed in the kernel ...

CWE-119 http://rhn.redhat.com/errata/RHSA-2012-0743.html https://bugzilla.redhat.com/show_bug.cgi?id=816151 http://ubuntu.5.n6.nabble.com/PATCH-Oneiric-CVE-2012-2137-KVM-Fix-buffer-overflow-in-kvm-set-irq-td4990566.html http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.24 http://ubuntu.com/usn/usn-1529-1 http://ubuntu.com/usn/usn-1607-1 http://www.ubuntu.com/usn/USN-1606-1 http://www.ubuntu.com/usn/USN-1594-1 http://www.ubuntu.com/usn/USN-1609-1 http://www.securityfocus.com/bid/54063 http://secunia.com/advisories/50952 http://secunia.com/advisories/50961 http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html http://marc.info/?l=bugtraq&m=139447903326211&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=f2ebd422f71cda9c791f76f85d2ca102ae34a1ed http://tools.cisco.com/security/center/viewAlert.x?alertId=26188 https://nvd.nist.gov https://usn.ubuntu.com/1606-1/

CVE-2012-2137

Vulnerability Summary

Most Upvoted Vulmon Research Post

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect