Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2012-2121

Date: May 17, 2012

The KVM implementation in the Linux kernel before 3.3.4 does not properly manage the relationships between memory slots and the iommu, which allows guest OS users to cause a denial of service (memory leak and host OS crash) by leveraging administrative access to the guest OS to conduct hotunplug and hotplug operations on devices.

Language: C

Severity Score

Related Resources (15)

https://github.com/torvalds/linux/commit/09ca8e1173bcb12e2a449698c9ae3b86a8a10195
https://people.canonical.com/~ubuntu-security/cve/CVE-2012-2121
https://access.redhat.com/security/cve/CVE-2012-2121
http://rhn.redhat.com/errata/RHSA-2012-0676.html
http://secunia.com/advisories/50732
http://www.securitytracker.com/id?1027083
http://www.ubuntu.com/usn/USN-2037-1
https://nvd.nist.gov/vuln/detail/CVE-2012-2121
http://www.ubuntu.com/usn/USN-2036-1
http://rhn.redhat.com/errata/RHSA-2012-0743.html
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.4
http://www.openwall.com/lists/oss-security/2012/04/19/16
https://bugzilla.redhat.com/show_bug.cgi?id=814149
http://www.ubuntu.com/usn/USN-1577-1
https://www.mend.io/vulnerability-database/CVE-2012-2121

Severity Score

Weakness Type (CWE)

Permissions, Privileges, and Access Control

CWE-264

CVSS v3.1

Base Score:
Attack Vector (AV): LOCAL
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): NONE
Integrity (I): NONE
Availability (A): HIGH

CVSS v2

Base Score:
Access Vector (AV): LOCAL
Access Complexity (AC): LOW
Authentication (AU): NONE
Confidentiality (C): NONE
Integrity (I): NONE
Availability (A): COMPLETE
Additional information:

Do you need more information?

Contact Us