Vigil@nce - Linux kernel: denial of service via KVM Interrupts
June 2013 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker located inside a KVM guest can access the virtual
memory and manage guest interrupts, in order to trigger a denial
of service.
– Impacted products: Linux, RHEL
– Severity: 1/4
– Creation date: 11/06/2013
DESCRIPTION OF THE VULNERABILITY
KVM is a virtualization tool integrated in the Linux kernel.
However, the function kvm_write_guest_cached() can be called while
the interrupts are disabled. Technical details are unknown.
An attacker located inside a KVM guest can therefore access the
virtual memory and manage guest interrupts, in order to trigger a
denial of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Linux-kernel-denial-of-service-via-KVM-Interrupts-12933