6.8

CVE-2013-1797

Use-after-free vulnerability in arch/x86/kvm/x86.c in the Linux kernel through 3.8.4 allows guest OS users to cause a denial of service (host OS memory corruption) or possibly have unspecified other impact via a crafted application that triggers use of a guest physical address (GPA) in (1) movable or (2) removable memory during an MSR_KVM_SYSTEM_TIME kvm_set_msr_common operation.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version <= 3.8.4
LinuxLinux Kernel Version3.8.0
LinuxLinux Kernel Version3.8.1
LinuxLinux Kernel Version3.8.2
LinuxLinux Kernel Version3.8.3
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.89% 0.549
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.8 3.2 10
AV:A/AC:H/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html
http://www.mandriva.com/security/advisories?name=MDVSA-2013:176
http://rhn.redhat.com/errata/RHSA-2013-0746.html
http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00018.html
http://rhn.redhat.com/errata/RHSA-2013-0928.html
http://rhn.redhat.com/errata/RHSA-2013-0744.html
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00018.html
http://rhn.redhat.com/errata/RHSA-2013-1026.html
http://www.ubuntu.com/usn/USN-1809-1
http://www.ubuntu.com/usn/USN-1812-1
http://www.ubuntu.com/usn/USN-1813-1
http://rhn.redhat.com/errata/RHSA-2013-0727.html
http://www.openwall.com/lists/oss-security/2013/03/20/9
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0b79459b482e85cb7426aa7da683a9f2c97aeae1
https://bugzilla.redhat.com/show_bug.cgi?id=917013
https://github.com/torvalds/linux/commit/0b79459b482e85cb7426aa7da683a9f2c97aeae1