LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

kvm: memory leak

Package(s):kvm CVE #(s):CVE-2010-3881
Created:December 21, 2010 Updated:September 2, 2011
Description: From the Red Hat advisory:

It was found that some structure padding and reserved fields in certain data structures in QEMU-KVM were not initialized properly before being copied to user-space. A privileged host user with access to "/dev/kvm" could use this flaw to leak kernel stack memory to user-space.

Alerts:
SUSE SUSE-SU-2011:0984-3 2011-09-02
SUSE SUSE-SU-2011:0984-2 2011-09-02
SUSE SUSE-SA:2011:038 2011-09-01
Ubuntu USN-1187-1 2011-08-09
Ubuntu USN-1161-1 2011-07-13
Red Hat RHSA-2011:0883-01 2011-06-21
openSUSE openSUSE-SU-2011:0399-1 2011-04-28
SUSE SUSE-SA:2011:007 2011-02-07
SUSE SUSE-SA:2011:004 2011-01-14
openSUSE openSUSE-SU-2011:0048-1 2011-01-19
Red Hat RHSA-2010:0998-01 2010-12-20
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds