CVE-2010-0306

Summary

CVE	CVE-2010-0306
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2010-02-12 19:30:00 UTC
Updated	2017-09-19 01:30:00 UTC
Description	The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing (SMP), does not use the Current Privilege Level (CPL) and I/O Privilege Level (IOPL) to restrict instruction execution, which allows guest OS users to cause a denial of service (guest OS crash) or gain privileges on the guest OS by leveraging access to a (1) IO port or (2) MMIO region, and replacing an instruction in between emulator entry and instruction fetch, a related issue to CVE-2010-0298.

Risk And Classification

Problem Types: CWE-264

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Kvm Qumranet	Kvm	83	All	All	All
Application	Kvm Qumranet	Kvm	83	All	All	All

References

Reference	Source	Link	Tags
rhn.redhat.com \| Red Hat Support	REDHAT	rhn.redhat.com
Linux Kernel KVM Multiple Privilege Escalation and Denial of Service Vulnerabilities	BID	www.securityfocus.com
Bug 560654 – CVE-2010-0306 kvm: emulator privilege escalation IOPL/CPL level check	CONFIRM	bugzilla.redhat.com
Repository / Oval Repository	OVAL	oval.cisecurity.org
Red Hat Customer Portal	REDHAT	rhn.redhat.com
Linux Kernel Multiple Vulnerabilities - Advisories - Community	SECUNIA	secunia.com	Vendor Advisory
Debian update for linux-2.6 - Advisories - Community	SECUNIA	secunia.com	Vendor Advisory
Debian -- Security Information -- DSA-1996-1 linux-2.6	DEBIAN	www.debian.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.