CVE-2012-2121

MEDIUM

Description

The KVM implementation in the Linux kernel before 3.3.4 does not properly manage the relationships between memory slots and the iommu, which allows guest OS users to cause a denial of service (memory leak and host OS crash) by leveraging administrative access to the guest OS to conduct hotunplug and hotplug operations on devices.

References

http://rhn.redhat.com/errata/RHSA-2012-0676.html

http://rhn.redhat.com/errata/RHSA-2012-0743.html

http://secunia.com/advisories/50732

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.4

http://www.openwall.com/lists/oss-security/2012/04/19/16

http://www.securitytracker.com/id?1027083

http://www.ubuntu.com/usn/USN-1577-1

http://www.ubuntu.com/usn/USN-2036-1

http://www.ubuntu.com/usn/USN-2037-1

https://bugzilla.redhat.com/show_bug.cgi?id=814149

https://github.com/torvalds/linux/commit/09ca8e1173bcb12e2a449698c9ae3b86a8a10195

Details

Source: MITRE

Published: 2012-05-17

Updated: 2018-01-05

Type: CWE-264

Risk Information

CVSS v2.0

Base Score: 4.9

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 3.9

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 3.3.3 (inclusive)

Tenable Plugins

View all (25 total)

IDNameProductFamilySeverity
79484OracleVM 3.1 : kernel-uek (OVMSA-2012-0042)NessusOracleVM Local Security Checks
high
71204Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2037-1)NessusUbuntu Local Security Checks
medium
71203Ubuntu 10.04 LTS : linux vulnerabilities (USN-2036-1)NessusUbuntu Local Security Checks
medium
68676Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2012-2021)NessusOracle Linux Local Security Checks
high
68675Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2012-2020)NessusOracle Linux Local Security Checks
high
68544Oracle Linux 6 : kernel (ELSA-2012-0743)NessusOracle Linux Local Security Checks
high
68527Oracle Linux 5 : kvm (ELSA-2012-0676)NessusOracle Linux Local Security Checks
medium
66431Debian DSA-2668-1 : linux-2.6 - privilege escalation/denial of service/information leakNessusDebian Local Security Checks
medium
64037RHEL 5 : kvm (RHSA-2012:0676)NessusRed Hat Local Security Checks
medium
62238USN-1577-1 : linux-ti-omap4 vulnerabilitiesNessusUbuntu Local Security Checks
high
61331Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20120618)NessusScientific Linux Local Security Checks
high
61315Scientific Linux Security Update : kvm on SL5.x x86_64 (20120521)NessusScientific Linux Local Security Checks
medium
59609CentOS 6 : kernel (CESA-2012:0743)NessusCentOS Local Security Checks
high
59562RHEL 6 : kernel (RHSA-2012:0743)NessusRed Hat Local Security Checks
high
59553USN-1476-1 : linux-ti-omap4 vulnerabilitiesNessusUbuntu Local Security Checks
high
59496USN-1474-1 : linux-ti-omap4 vulnerabilitiesNessusUbuntu Local Security Checks
high
59495Ubuntu 12.04 LTS : linux vulnerabilities (USN-1473-1)NessusUbuntu Local Security Checks
high
59476Ubuntu 11.10 : linux vulnerabilities (USN-1472-1)NessusUbuntu Local Security Checks
high
59475Ubuntu 10.04 LTS : linux-lts-backport-oneiric vulnerabilities (USN-1471-1)NessusUbuntu Local Security Checks
high
59474Ubuntu 10.04 LTS : linux-lts-backport-natty vulnerabilities (USN-1470-1)NessusUbuntu Local Security Checks
high
59321Ubuntu 11.04 : linux vulnerabilities (USN-1457-1)NessusUbuntu Local Security Checks
high
59212CentOS 5 : kvm (CESA-2012:0676)NessusCentOS Local Security Checks
medium
58881Fedora 15 : kernel-2.6.43.2-6.fc15 (2012-6406)NessusFedora Local Security Checks
high
58862Fedora 16 : kernel-3.3.2-6.fc16 (2012-6386)NessusFedora Local Security Checks
high
58836Fedora 17 : kernel-3.3.2-8.fc17 (2012-6344)NessusFedora Local Security Checks
high