kvm security update
A privileged guest user could cause a buffer overflow in
the virtio subsystem of the host, therefore crashing the
guest or potentially execute arbitrary code on the host
(CVE-2011-2212, CVE-2011-2512).
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 4863
Fixed bugs
bnc#701161
VUL-0: kvm: virtqueue: too-large indirect descriptor buffer overflow
bnc#702823
VUL-0: qemu-kvm: OOB memory access caused by negative vq
CVE#CVE-2011-2212
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE#CVE-2011-2512
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
