Back to search
CVE-2009-3638
Published: Oct 29, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Integer overflow in the kvm_dev_ioctl_get_supported_cpuid function in arch/x86/kvm/x86.c in the KVM subsystem in the Linux kernel before 2.6.31.4 allows local users to have an unspecified impact via a KVM_GET_SUPPORTED_CPUID request to the kvm_arch_dev_ioctl function.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.31.4
x_refsource_CONFIRM
[oss-security] 20091023 Re: CVE request: kvm: integer overflow in kvm_dev_ioctl_get_supported_cpuid()
mailing-list
x_refsource_MLIST
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.32-rc4
x_refsource_CONFIRM
USN-864-1
vendor-advisory
x_refsource_UBUNTU
MDVSA-2009:329
vendor-advisory
x_refsource_MANDRIVA
https://bugzilla.redhat.com/show_bug.cgi?id=530515
x_refsource_CONFIRM
linux-kernel-supportedcpuid-code-execution(53934)
vdb-entry
x_refsource_XF
36803
vdb-entry
x_refsource_BID
[oss-security] 20091023 CVE request: kvm: integer overflow in kvm_dev_ioctl_get_supported_cpuid()
mailing-list
x_refsource_MLIST
FEDORA-2009-11038
vendor-advisory
x_refsource_FEDORA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now