CVE-2013-1796

Published Mar 22, 2013

Last updated 2 years ago

Overview

Description
The kvm_set_msr_common function in arch/x86/kvm/x86.c in the Linux kernel through 3.8.4 does not ensure a required time_page alignment during an MSR_KVM_SYSTEM_TIME operation, which allows guest OS users to cause a denial of service (buffer overflow and host OS memory corruption) or possibly have unspecified other impact via a crafted application.
Source
secalert@redhat.com
NVD status
Modified

Social media

Hype score
Not currently trending

Risk scores

CVSS 2.0

Type
Primary
Base score
6.8
Impact score
10
Exploitability score
3.2
Vector string
AV:A/AC:H/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov
CWE-119

Configurations