Summary: | kernel: kvm: pit timer with no irqchip crashes the system (CVE-2011-4622) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Michael Harrison <n0idx80> |
Component: | Kernel | Assignee: | Gentoo Kernel Security <security-kernel> |
Status: | RESOLVED OBSOLETE | ||
Severity: | minor | CC: | kernel |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.redhat.com/show_bug.cgi?id=769721 | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Michael Harrison
2011-12-22 11:34:42 UTC
CVE-2011-4622 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-4622): The create_pit_timer function in arch/x86/kvm/i8254.c in KVM 83, and possibly other versions, does not properly handle when Programmable Interval Timer (PIT) interrupt requests (IRQs) when a virtual interrupt controller (irqchip) is not available, which allows local users to cause a denial of service (NULL pointer dereference) by starting a timer. This only affects the Kernel side, no GLSA will be released. kvm was merged in kernel in version 2.6.20. There are no longer any 2.x kernels available in the repository with the exception of sys-kernel/xbox-sources which is unsupported by security. |