CVE-2011-2212

Priority
Medium
Description
Buffer overflow in the virtio subsystem in qemu-kvm 0.14.0 and earlier
allows privileged guest users to cause a denial of service (guest crash) or
gain privileges via a crafted indirect descriptor related to "virtqueue in
and out requests."
References
Notes
jdstrand> be careful, 0.14.1 and Debian do not have the patch
Assigned-to
jdstrand
Package
Upstream:needed
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):released (0.12.3+noroms-0ubuntu9.12)
Ubuntu 11.04 (Natty Narwhal):released (0.14.0+noroms-0ubuntu4.3)
Ubuntu 11.10 (Oneiric Ocelot):released (0.14.0+noroms-0ubuntu8)
Patches:
Vendor:https://rhn.redhat.com/errata/RHSA-2011-0919.html
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-27 20:14:41 UTC (commit 5449)