CVE-2009-4004

HIGHCVSS 7.8

7.8

Buffer overflow in the kvm_vcpu_ioctl_x86_setup_mce function in arch/x86/kvm/x86.c in the KVM subsystem in the Linux kernel before 2.6.32-rc7 allows local users to cause a denial of service (memory corruption) or possibly gain privileges via a KVM_X86_SETUP_MCE IOCTL request that specifies a large number of Machine Check Exception (MCE) banks.

🔗 References (12)

cve@mitrehttp://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a9e38c3e01ad242fe2a625354cf065c34b01e3aa
cve@mitrehttp://secunia.com/advisories/37357
cve@mitrehttp://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.32-rc7
cve@mitrehttp://www.securityfocus.com/bid/37035
cve@mitrehttp://www.vupen.com/english/advisories/2009/3267
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/54302
af854a3a-2127-422b-91ae-364da2661108http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a9e38c3e01ad242fe2a625354cf065c34b01e3aa
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/37357
af854a3a-2127-422b-91ae-364da2661108http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.32-rc7
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/37035
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2009/3267
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/54302

Is Your Infrastructure Affected by CVE-2009-4004?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-4004

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-4004?