VDB
CVE-2009-1242
CVE-2009-1242
PUBLISHED
CVSS 4.900000095367432 MEDIUM
The vmx_set_msr function in arch/x86/kvm/vmx.c in the VMX implementation in the KVM subsystem in the Linux kernel before 2.6.29.1 on the i386 platform allows guest OS users to cause a denial of service (OOPS) by setting the EFER_LME (aka "Long mode enable") bit in the Extended Feature Enable Register (EFER) model-specific register, which is specific to the x86_64 platform.
EPSS 0.07% · 21.1th percentile
Risk Scores
CVSS v2.0
4.900000095367432
EPSS Score
0.07%
21.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| opensuse | opensuse | 11.0, 11.1 |
| fedoraproject | fedora | 10 |
| linux | linux_kernel | 0 |
| canonical | ubuntu_linux | 6.06, 9.04, 8.04 |
| debian | debian_linux | 4.0, 5.0 |
Exploit Intelligence
- http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.29-git1.log (circl)
- http://www.globalsecuritymag.com/Vigil-nce-Linux-kernel-denial-of%2C20090402%2C8311 (circl)
- linux-kernel-eferlme-dos(49594) (circl)
- 35226 (circl)
- http://patchwork.kernel.org/patch/15549/ (circl)
- http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.29.1 (circl)
- 34478 (circl)
- 34331 (circl)
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=16175a796d061833aacfbd9672235f2d2725df65 (circl)
- FEDORA-2009-5356 (circl)
…and 17 more exploits
Timeline
- Apr 6, 2009 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- http://patchwork.kernel.org/patch/15549/ patch
- http://secunia.com/advisories/34478 advisory
- http://secunia.com/advisories/34981 advisory
- http://secunia.com/advisories/35120 advisory
- http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.29-git1.log url
- http://www.globalsecuritymag.com/Vigil-nce-Linux-kernel-denial-of%2C20090402%2C8311 url
- linux-kernel-eferlme-dos(49594) vdb
- 35226 third-party-advisory
- http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.29.1 url
- 34331 vdb
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=16175a796d061833aacfbd9672235f2d2725df65 url
- FEDORA-2009-5356 vendor-advisory
- SUSE-SA:2009:032 vendor-advisory
- 35656 third-party-advisory
- 20090516 rPSA-2009-0084-1 kernel mailing-list
- http://vigilance.fr/vulnerability/Linux-kernel-denial-of-service-via-EFER-8585 url
- SUSE-SA:2009:031 vendor-advisory
- USN-793-1 vendor-advisory
- DSA-1800 vendor-advisory
- 35387 third-party-advisory
…and 11 more