Red Hat Customer Portal

Skip to main content

CVE-2011-2212

Buffer overflow in the virtio subsystem in qemu-kvm 0.14.0 and earlier allows privileged guest users to cause a denial of service (guest crash) or gain privileges via a crafted indirect descriptor related to "virtqueue in and out requests."

Details Source

Mitre

Statement

This issue only affects Red Hat Enterprise Linux 6. The version of the qemu/kvm
as shipped with Red Hat Enterprise Linux 5 is not affected because it does not provide support for indirect descriptors.

Public Date

2011-07-05 00:00:00

Impact

Important

Bugzilla

CVE-2011-2212 qemu-kvm: virtqueue: too-large indirect descriptor buffer overflow

Bugzilla ID

713 589

CVSS Status

verified

Base Score

7.40

Base Metrics

AV:A/AC:M/Au:S/C:C/I:C/A:C

Acknowledgements

Red Hat would like to thank Nelson Elhage for reporting this issue.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 6 (qemu-kvm) RHSA-2011:0919 2011-07-05

CWE

CWE-119

Affected Packages State

Platform Package State
Red Hat Enterprise Linux 5 kvm Not affected