CVE-2012-4461

CVSS v2.0 1.9 (Low)

EPSS 0.04 % (5^th)

Affected Products 1

Advisories 23

The KVM subsystem in the Linux kernel before 3.6.9, when running on hosts that use qemu userspace without XSAVE, allows local users to cause a denial of service (kernel OOPS) by using the KVM_SET_SREGS ioctl to set the X86_CR4_OSXSAVE bit in the guest cr4 register, then calling the KVM_RUN ioctl.

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2013-01-22 23:55:02
(11 years ago)
Updated Date: 2023-02-13 00:26:15
(19 months ago)

Affected Products

Linux

Linux Kernel

Configuration #1

	CPE23	Up To
Linux Kernel 3.6.8 and prior versions	cpe:2.3:o:linux:linux_kernel	<= 3.6.8
Linux Kernel 3.6	cpe:2.3:o:linux:linux_kernel:3.6
Linux Kernel 3.6.1	cpe:2.3:o:linux:linux_kernel:3.6.1
Linux Kernel 3.6.2	cpe:2.3:o:linux:linux_kernel:3.6.2
Linux Kernel 3.6.3	cpe:2.3:o:linux:linux_kernel:3.6.3
Linux Kernel 3.6.4	cpe:2.3:o:linux:linux_kernel:3.6.4
Linux Kernel 3.6.5	cpe:2.3:o:linux:linux_kernel:3.6.5
Linux Kernel 3.6.6	cpe:2.3:o:linux:linux_kernel:3.6.6
Linux Kernel 3.6.7	cpe:2.3:o:linux:linux_kernel:3.6.7