Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2119

Overview

Vulnerability Score 5.2 5.2
CVE Id CVE-2012-2119
Last Modified 20 Jun 2013 11:11:05
Published 22 Jan 2013 06:55:01
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector ADJACENT_NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2012-2119

Summary

Buffer overflow in the macvtap device driver in the Linux kernel before 3.4.5, when running in certain configurations, allows privileged KVM guest users to cause a denial of service (crash) via a long descriptor with a long vector length.

Vulnerable Systems

Operating System

  • Linux Kernel 3.4

  • Linux Kernel 3.4.1

  • Linux Kernel 3.4.2

  • Linux Kernel 3.4.3

  • Linux Kernel 3.4.4


References

CONFIRM - https://oss.oracle.com/git/?p=redpatch.git;a=commit;h=4aae94d1c7b32316911c86176c0ed4f8ed62da73

CONFIRM - https://github.com/torvalds/linux/commit/b92946e2919134ebe2a4083e4302236295ea2a73

MLIST - [oss-security] 20120419 Re: CVE request -- kernel: macvtap: zerocopy: vector length is not validated before pinning user pages

CONFIRM - http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.5

UBUNTU - USN-1529-1

REDHAT - RHSA-2012:0743

MLIST - [linux-netdev] 20120416 [PATCH 3/6] macvtap: zerocopy: validate vector length before pinning user pages

CONFIRM - http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=b92946e2919134ebe2a4083e4302236295ea2a73

CONFIRM - http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=814278

SUSE - openSUSE-SU-2013:0925

Related Patches

Novell SUSE 2012:6457 kernel security update for SLE 11 SP2 i586

Novell SUSE 2012:6463 kernel security update for SLE 11 SP2 x86_64


Last Updated: 27 May 2016 10:49:53