Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 291359 (CVE-2009-3722) - Kernel: KVM handle_dr() debug register DoS (CVE-2009-3722)
Summary: Kernel: KVM handle_dr() debug register DoS (CVE-2009-3722)
Status: RESOLVED FIXED
Alias: CVE-2009-3722
Product: Gentoo Security
Classification: Unclassified
Component: Kernel (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: Gentoo Security
URL: http://git.kernel.org/?p=linux/kernel...
Whiteboard: [linux <2.6.30.9] [linux >=2.6.31 <2....
Keywords:
Depends on:
Blocks:
 
Reported: 2009-10-31 19:23 UTC by Alex Legler (RETIRED)
Modified: 2013-09-15 18:51 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Alex Legler (RETIRED) archtester gentoo-dev Security 2009-10-31 19:23:32 UTC 
CVE-2009-3722 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-3722):
  The handle_dr function in arch/x86/kvm/vmx.c in the KVM subsystem in
  the Linux kernel before 2.6.31.1 does not properly verify the Current
  Privilege Level (CPL) before accessing a debug register, which allows
  guest OS users to cause a denial of service (trap) on the host OS via
  a crafted application.
Comment 1 Doug Goldstein (RETIRED) gentoo-dev 2010-02-03 20:09:38 UTC 
app-emulation/kvm-kmod now only has 2.6.32.2 and newer components so that's no longer affected