CVE-2009-4031

EUVD-2009-4002
The do_insn_fetch function in arch/x86/kvm/emulate.c in the x86 emulator in the KVM subsystem in the Linux kernel before 2.6.32-rc8-next-20091125 tries to interpret instructions that contain too many bytes to be valid, which allows guest OS users to cause a denial of service (increased scheduling latency) on the host OS via unspecified manipulations related to SMP support.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
𝑥
< 2.6.32
linuxlinux_kernel
2.6.32
linuxlinux_kernel
2.6.32:rc1
linuxlinux_kernel
2.6.32:rc2
linuxlinux_kernel
2.6.32:rc3
linuxlinux_kernel
2.6.32:rc4
linuxlinux_kernel
2.6.32:rc5
linuxlinux_kernel
2.6.32:rc6
linuxlinux_kernel
2.6.32:rc7
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
kvm
dapper
dne
hardy
ignored
intrepid
ignored
jaunty
ignored
karmic
dne
lucid
dne
maverick
dne
natty
dne
linux
dapper
dne
hardy
Fixed 2.6.24-27.65
released
intrepid
Fixed 2.6.27-17.45
released
jaunty
Fixed 2.6.28-18.59
released
karmic
Fixed 2.6.31-19.56
released
lucid
not-affected
maverick
not-affected
natty
not-affected
linux-ec2
dapper
dne
hardy
dne
intrepid
dne
jaunty
dne
karmic
Fixed 2.6.31-19.56
released
lucid
not-affected
maverick
ignored
natty
dne
linux-fsl-imx51
dapper
dne
hardy
dne
karmic
Fixed 2.6.31-108.21
released
lucid
not-affected
maverick
dne
natty
dne
linux-lts-backport-maverick
dapper
dne
hardy
dne
intrepid
dne
jaunty
dne
karmic
dne
lucid
not-affected
maverick
dne
natty
dne
linux-mvl-dove
dapper
dne
hardy
dne
karmic
Fixed 2.6.31-211.22
released
lucid
not-affected
maverick
not-affected
natty
dne
linux-source-2.6.15
dapper
not-affected
hardy
dne
intrepid
dne
jaunty
dne
karmic
dne
lucid
dne
maverick
dne
natty
dne
linux-ti-omap4
dapper
dne
hardy
dne
karmic
dne
lucid
dne
maverick
not-affected
natty
not-affected
qemu-kvm
dapper
dne
hardy
dne
intrepid
dne
jaunty
dne
karmic
not-affected
lucid
not-affected
maverick
not-affected
natty
not-affected
Common Weakness Enumeration
References
http://git.kernel.org/?p=linux/kernel/git/avi/kvm.git%3Ba=commit%3Bh=e42d9b8141d1f54ff72ad3850bb110c95a5f3b88
http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00006.html
http://secunia.com/advisories/37720
http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.32-rc8-next-20091125.gz
http://www.openwall.com/lists/oss-security/2009/11/25/1
http://www.openwall.com/lists/oss-security/2009/11/25/3
http://www.securityfocus.com/bid/37130
https://bugzilla.redhat.com/show_bug.cgi?id=541160
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11089
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00777.html
http://git.kernel.org/?p=linux/kernel/git/avi/kvm.git%3Ba=commit%3Bh=e42d9b8141d1f54ff72ad3850bb110c95a5f3b88
http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00006.html
http://secunia.com/advisories/37720
http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.32-rc8-next-20091125.gz
http://www.openwall.com/lists/oss-security/2009/11/25/1
http://www.openwall.com/lists/oss-security/2009/11/25/3
http://www.securityfocus.com/bid/37130
https://bugzilla.redhat.com/show_bug.cgi?id=541160
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11089
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00777.html