CVE-2012-4461

low
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The KVM subsystem in the Linux kernel before 3.6.9, when running on hosts that use qemu userspace without XSAVE, allows local users to cause a denial of service (kernel OOPS) by using the KVM_SET_SREGS ioctl to set the X86_CR4_OSXSAVE bit in the guest cr4 register, then calling the KVM_RUN ioctl.

References

http://article.gmane.org/gmane.comp.emulators.kvm.devel/100742

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux.git;a=commit;h=6d1068b3a98519247d8ba4ec85cd40ac136dbdf9

http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html

http://rhn.redhat.com/errata/RHSA-2013-0223.html

http://rhn.redhat.com/errata/RHSA-2013-0882.html

http://secunia.com/advisories/51160

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.6.9

http://www.openwall.com/lists/oss-security/2012/11/06/14

http://www.securityfocus.com/bid/56414

https://bugzilla.redhat.com/show_bug.cgi?id=862900

https://www.suse.com/support/update/announcement/2012/suse-su-20121679-1.html

Details

Source: MITRE

Published: 2013-01-22

Updated: 2013-06-21

Risk Information

CVSS v2

Base Score: 1.9

Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 3.4

Severity: LOW

Tenable Plugins

View all (24 total)

IDNameProductFamilySeverity
79497OracleVM 3.2 : kernel-uek (OVMSA-2013-0008)NessusOracleVM Local Security Checks
medium
78877F5 Networks BIG-IP : Linux kernel vulnerability (SOL15797)NessusF5 Networks Local Security Checks
low
69725Amazon Linux AMI : kernel (ALAS-2013-166)NessusAmazon Linux Local Security Checks
medium
68847Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2013-2507)NessusOracle Linux Local Security Checks
high
68845Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2013-2503)NessusOracle Linux Local Security Checks
medium
68724Oracle Linux 6 : kernel (ELSA-2013-0223)NessusOracle Linux Local Security Checks
medium
66705RHEL 6 : kernel (RHSA-2013:0882)NessusRed Hat Local Security Checks
medium
66431Debian DSA-2668-1 : linux-2.6 - privilege escalation/denial of service/information leakNessusDebian Local Security Checks
medium
64492CentOS 6 : kernel (CESA-2013:0223)NessusCentOS Local Security Checks
medium
64489Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20130205)NessusScientific Linux Local Security Checks
medium
64479RHEL 6 : kernel (RHSA-2013:0223)NessusRed Hat Local Security Checks
medium
64436Ubuntu 12.04 LTS : linux-lts-quantal - Linux kernel hardware enablement from Quantal regression (USN-1704-2)NessusUbuntu Local Security Checks
medium
64434Ubuntu 12.10 : linux regression (USN-1699-2)NessusUbuntu Local Security Checks
medium
64432Ubuntu 12.04 LTS : linux regression (USN-1696-2)NessusUbuntu Local Security Checks
medium
64180SuSE 11.2 Security Update : Linux kernel (SAT Patch Numbers 7123 / 7127)NessusSuSE Local Security Checks
high
63669Ubuntu 12.04 LTS : linux-lts-quantal - Linux kernel hardware enablement from Quantal vulnerabilities (USN-1704-1)NessusUbuntu Local Security Checks
medium
63615Ubuntu 12.10 : linux vulnerabilities (USN-1699-1)NessusUbuntu Local Security Checks
medium
63613Ubuntu 12.04 LTS : linux vulnerabilities (USN-1696-1)NessusUbuntu Local Security Checks
medium
63540Ubuntu 11.10 : linux vulnerabilities (USN-1689-1)NessusUbuntu Local Security Checks
low
63539Ubuntu 10.04 LTS : linux-lts-backport-oneiric vulnerabilities (USN-1688-1)NessusUbuntu Local Security Checks
low
63090Fedora 16 : kernel-3.6.7-4.fc16 (2012-18691)NessusFedora Local Security Checks
low
63055Fedora 18 : kernel-3.6.7-5.fc18 (2012-18740)NessusFedora Local Security Checks
low
63013Fedora 17 : kernel-3.6.7-4.fc17 (2012-18684)NessusFedora Local Security Checks
low
801534CentOS RHSA-2013-0223 Security CheckLog Correlation EngineGeneric
high