Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2010-2784

Опубликовано: 28 июл. 2010
Источник: redhat
CVSS2: 6.6

Описание

The subpage MMIO initialization functionality in the subpage_register function in exec.c in QEMU-KVM, as used in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and KVM 83, does not properly select the index for access to the callback array, which allows guest OS users to cause a denial of service (guest OS crash) or possibly gain privileges via unspecified vectors.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6qemu-kvmNot affected
RHEV Hypervisorrhev-hypervisorAffected
Red Hat Enterprise Linux 5kvmFixedRHSA-2010:062719.08.2010
Red Hat Enterprise Virtualization for RHEL-5rhev-hypervisorFixedRHSA-2010:062219.08.2010

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
https://bugzilla.redhat.com/show_bug.cgi?id=619411qemu: insufficient constraints checking in exec.c:subpage_register()

6.6 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2010-2784

ubuntu
почти 15 лет назад

The subpage MMIO initialization functionality in the subpage_register function in exec.c in QEMU-KVM, as used in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and KVM 83, does not properly select the index for access to the callback array, which allows guest OS users to cause a denial of service (guest OS crash) or possibly gain privileges via unspecified vectors.

nvd логотип

CVE-2010-2784

nvd
почти 15 лет назад

The subpage MMIO initialization functionality in the subpage_register function in exec.c in QEMU-KVM, as used in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and KVM 83, does not properly select the index for access to the callback array, which allows guest OS users to cause a denial of service (guest OS crash) or possibly gain privileges via unspecified vectors.

debian логотип

CVE-2010-2784

debian
почти 15 лет назад

The subpage MMIO initialization functionality in the subpage_register ...

github логотип

GHSA-46g8-g627-3wh5

github
около 3 лет назад

The subpage MMIO initialization functionality in the subpage_register function in exec.c in QEMU-KVM, as used in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and KVM 83, does not properly select the index for access to the callback array, which allows guest OS users to cause a denial of service (guest OS crash) or possibly gain privileges via unspecified vectors.

oracle-oval логотип

ELSA-2010-0627

oracle-oval
почти 15 лет назад

ELSA-2010-0627: kvm security and bug fix update (IMPORTANT)

6.6 Medium

CVSS2