CVE-2010-3698 Information

Feb 14, 2021 cve

Description

The KVM implementation in the Linux kernel before 2.6.36 does not properly reload the FS and GS segment registers which allows host OS users to cause a denial of service (host OS crash) via a KVM_RUN ioctl call in conjunction with a modified Local Descriptor Table (LDT).

Reference

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9581d442b9058d3699b4be568b6e5eae38a41493 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052513.html http://secunia.com/advisories/42745 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36 http://www.mandriva.com/security/advisories?name=MDVSA-2011:029 http://www.redhat.com/support/errata/RHSA-2010-0842.html http://www.redhat.com/support/errata/RHSA-2010-0898.html http://www.securityfocus.com/bid/44500 http://www.vupen.com/english/advisories/2010/3123 http://www.vupen.com/english/advisories/2010/3321 https://bugzilla.redhat.com/show_bug.cgi?id=639879

Share on: