CVE-2012-2121
Description
The KVM implementation in the Linux kernel before 3.3.4 does not properly manage the relationships between memory slots and the iommu, which allows guest OS users to cause a denial of service (memory leak and host OS crash) by leveraging administrative access to the guest OS to conduct hotunplug and hotplug operations on devices.
Risk Information
Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.127
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-1473-1) linux-image-3.2.0-25-generic_3.2.0-25.40_i386.deb | Linux |
| Linux kernel (USN-1473-1) linux-image-3.2.0-25-generic_3.2.0-25.40_amd64.deb | Linux |
| Linux kernel (USN-1473-1) linux-image-3.2.0-25-virtual_3.2.0-25.40_i386.deb | Linux |
| Linux kernel (USN-1473-1) linux-image-3.2.0-25-virtual_3.2.0-25.40_amd64.deb | Linux |
| Linux kernel (USN-1473-1) linux-image-3.2.0-25-generic-pae_3.2.0-25.40_i386.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234