CVE-2012-1601

Published: May 17, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

The KVM implementation in the Linux kernel before 3.3.6 allows host OS users to cause a denial of service (NULL pointer dereference and host OS crash) by making a KVM_CREATE_IRQCHIP ioctl call after a virtual CPU already exists.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/torvalds/linux/commit/9c895160d25a76c21b65bad141b08e8d4f99afef

x_refsource_CONFIRM

SUSE-SU-2012:1679

vendor-advisory

x_refsource_SUSE

DSA-2469

vendor-advisory

x_refsource_DEBIAN

[oss-security] 20120329 Re: CVE request -- kernel: kvm: irqchip_in_kernel() and vcpu->arch.apic inconsistency

mailing-list

x_refsource_MLIST

RHSA-2012:0571

vendor-advisory

x_refsource_REDHAT

1026897

vdb-entry

x_refsource_SECTRACK

openSUSE-SU-2013:0925

vendor-advisory

x_refsource_SUSE

49928

third-party-advisory

x_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=808199

x_refsource_CONFIRM

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.6

x_refsource_CONFIRM

RHSA-2012:0676

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-1601

Description

Affected Products

References