 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2009-2287 |
| Description: | The kvm_arch_vcpu_ioctl_set_sregs function in the KVM in Linux kernel 2.6 before 2.6.30, when running on x86 systems, does not validate the page table root in a KVM_SET_SREGS call, which allows local users to cause a denial of service (crash or hang) via a crafted cr3 value, which triggers a NULL pointer dereference in the gfn_to_rmap function. |
| Test IDs: | 1.3.6.1.4.1.25623.1.0.65719 1.3.6.1.4.1.25623.1.0.64556 1.3.6.1.4.1.25623.1.0.64557 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2009-2287 Debian Security Information: DSA-1845 (Google Search) http://www.debian.org/security/2009/dsa-1845 http://www.mandriva.com/security/advisories?name=MDVSA-2010:198 http://www.openwall.com/lists/oss-security/2009/06/30/1 http://secunia.com/advisories/35675 http://secunia.com/advisories/36045 http://secunia.com/advisories/36054 http://www.ubuntu.com/usn/usn-807-1 |