|Package(s):||kernel||CVE #(s):||CVE-2012-1601 CVE-2012-2133|
|Created:||May 10, 2012||Updated:||June 13, 2012|
From the Debian advisory:
CVE-2012-1601: Michael Ellerman reported an issue in the KVM subsystem. Local users could cause a denial of service (NULL pointer dereference) by creating VCPUs before a call to KVM_CREATE_IRQCHIP.
CVE-2012-2133: Steve Grubb reported in an issue in fcaps, a filesystem-based capabilities system. Personality flags set using this mechanism, such as the disabling of address space randomization, may persist across suid calls.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds