The Linux kernel is prone to a memory-corruption vulnerability that affects the Kernel-based Virtual Machine (KVM).
Local attackers can exploit this issue to execute arbitrary code with superuser privileges. Successful exploits will completely compromise affected computers.
Versions prior to Linux kernel 2.6.32-rc7 are vulnerable.
- KVM: x86: Catch potential overrun in MCE setup (Jan Kiszka)
- Linux 2.6.32-rc7 Changelog (Linux)
- Linux kernel Homepage (kernel.org)
Published: Nov 16 2009 | Updated: Nov 16 2009