Описание
A certain Red Hat patch to the KVM subsystem in the kernel package before 2.6.32-358.11.1.el6 on Red Hat Enterprise Linux (RHEL) 6 does not properly implement the PV EOI feature, which allows guest OS users to cause a denial of service (host OS crash) by leveraging a time window during which interrupts are disabled but copy_to_user function calls are possible.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.9.0-0.2 |
| lucid | not-affected | |
| precise | not-affected | |
| quantal | not-affected | 3.4.0-1.1 |
| raring | not-affected | 3.7.0-0.5 |
| upstream | released | 3.6~rc1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | DNE | |
| precise | not-affected | |
| quantal | not-affected | 3.2.0-1602.5 |
| raring | DNE | |
| upstream | released | 3.6~rc1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | not-affected | |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| upstream | released | 3.6~rc1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | ignored | end of life |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| upstream | released | 3.6~rc1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | DNE | |
| precise | ignored | end of life |
| quantal | ignored | end of life |
| raring | DNE | |
| upstream | released | 3.6~rc1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | DNE | |
| precise | ignored | end of life |
| quantal | ignored | end of life |
| raring | DNE | |
| upstream | released | 3.6~rc1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | DNE | |
| precise | ignored | end of life |
| quantal | ignored | end of life |
| raring | DNE | |
| upstream | released | 3.6~rc1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | ignored | end of life |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| upstream | released | 3.6~rc1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | DNE | |
| precise | not-affected | 3.5.0-18.29~precise1 |
| quantal | DNE | |
| raring | DNE | |
| upstream | released | 3.6~rc1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | DNE | |
| precise | not-affected | 3.8.0-19.30~precise1 |
| quantal | DNE | |
| raring | DNE | |
| upstream | released | 3.6~rc1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | ignored | end of life |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| upstream | released | 3.6~rc1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | ignored | end of life |
| precise | ignored | end of life |
| quantal | ignored | end of life |
| raring | DNE | |
| upstream | released | 3.6~rc1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.5.0-223.34 |
| lucid | DNE | |
| precise | not-affected | |
| quantal | not-affected | 3.4.0-201.2 |
| raring | not-affected | 3.5.0-213.20 |
| upstream | released | 3.6~rc1 |
Показывать по
EPSS
5.7 Medium
CVSS2
Связанные уязвимости
A certain Red Hat patch to the KVM subsystem in the kernel package before 2.6.32-358.11.1.el6 on Red Hat Enterprise Linux (RHEL) 6 does not properly implement the PV EOI feature, which allows guest OS users to cause a denial of service (host OS crash) by leveraging a time window during which interrupts are disabled but copy_to_user function calls are possible.
A certain Red Hat patch to the KVM subsystem in the kernel package before 2.6.32-358.11.1.el6 on Red Hat Enterprise Linux (RHEL) 6 does not properly implement the PV EOI feature, which allows guest OS users to cause a denial of service (host OS crash) by leveraging a time window during which interrupts are disabled but copy_to_user function calls are possible.
A certain Red Hat patch to the KVM subsystem in the kernel package bef ...
A certain Red Hat patch to the KVM subsystem in the kernel package before 2.6.32-358.11.1.el6 on Red Hat Enterprise Linux (RHEL) 6 does not properly implement the PV EOI feature, which allows guest OS users to cause a denial of service (host OS crash) by leveraging a time window during which interrupts are disabled but copy_to_user function calls are possible.
ELSA-2013-0911: kernel security, bug fix, and enhancement update (IMPORTANT)
EPSS
5.7 Medium
CVSS2