** Description changed: - If some vcpus are created before KVM_CREATE_IRQCHIP, then - irqchip_in_kernel() and vcpu->arch.apic will be inconsistent, leading to - potential NULL pointer dereferences. An unprivileged local user could - use this flaw to crash the system. + The KVM implementation in the Linux kernel before 3.3.6 allows host OS + users to cause a denial of service (NULL pointer dereference and host OS + crash) by making a KVM_CREATE_IRQCHIP ioctl call after a virtual CPU + already exists. Break-Fix: - 3e515705a1f46beb1c942bb8043c16f8ac7b1e9e
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/971685 Title: CVE-2012-1601 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/971685/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs