{ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2012-2137", "STATE" : "PUBLIC" }, "affects" : { "vendor" : { "vendor_data" : [ { "product" : { "product_data" : [ { "product_name" : "n/a", "version" : { "version_data" : [ { "version_value" : "n/a" } ] } } ] }, "vendor_name" : "n/a" } ] } }, "data_format" : "MITRE", "data_type" : "CVE", "data_version" : "4.0", "description" : { "description_data" : [ { "lang" : "eng", "value" : "Buffer overflow in virt/kvm/irq_comm.c in the KVM subsystem in the Linux kernel before 3.2.24 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to Message Signaled Interrupts (MSI), irq routing entries, and an incorrect check by the setup_routing_entry function before invoking the kvm_set_irq function." } ] }, "problemtype" : { "problemtype_data" : [ { "description" : [ { "lang" : "eng", "value" : "n/a" } ] } ] }, "references" : { "reference_data" : [ { "name" : "http://ubuntu.5.n6.nabble.com/PATCH-Oneiric-CVE-2012-2137-KVM-Fix-buffer-overflow-in-kvm-set-irq-td4990566.html", "refsource" : "MISC", "url" : "http://ubuntu.5.n6.nabble.com/PATCH-Oneiric-CVE-2012-2137-KVM-Fix-buffer-overflow-in-kvm-set-irq-td4990566.html" }, { "name" : "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=f2ebd422f71cda9c791f76f85d2ca102ae34a1ed", "refsource" : "CONFIRM", "url" : "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=f2ebd422f71cda9c791f76f85d2ca102ae34a1ed" }, { "name" : "http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.24", "refsource" : "CONFIRM", "url" : "http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.24" }, { "name" : "https://bugzilla.redhat.com/show_bug.cgi?id=816151", "refsource" : "CONFIRM", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=816151" }, { "name" : "HPSBGN02970", "refsource" : "HP", "url" : "http://marc.info/?l=bugtraq&m=139447903326211&w=2" }, { "name" : "RHSA-2012:0743", "refsource" : "REDHAT", "url" : "http://rhn.redhat.com/errata/RHSA-2012-0743.html" }, { "name" : "openSUSE-SU-2013:0925", "refsource" : "SUSE", "url" : "http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html" }, { "name" : "USN-1529-1", "refsource" : "UBUNTU", "url" : "http://ubuntu.com/usn/usn-1529-1" }, { "name" : "USN-1607-1", "refsource" : "UBUNTU", "url" : "http://ubuntu.com/usn/usn-1607-1" }, { "name" : "USN-1594-1", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-1594-1" }, { "name" : "USN-1606-1", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-1606-1" }, { "name" : "USN-1609-1", "refsource" : "UBUNTU", "url" : "http://www.ubuntu.com/usn/USN-1609-1" }, { "name" : "54063", "refsource" : "BID", "url" : "http://www.securityfocus.com/bid/54063" }, { "name" : "50952", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/50952" }, { "name" : "50961", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/50961" } ] } }