Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The kvm_vm_ioctl_assign_device function in virt/kvm/assigned-dev.c in the KVM subsystem in the Linux kernel before 3.1.10 does not verify permission to access PCI configuration space and BAR resources, which allows host OS users to assign PCI devices and cause a denial of service (host OS crash) via a KVM_ASSIGN_PCI_DEVICE operation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel “kvm_vm_ioctl_assign_device”函数未授权访问漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 3.1.10之前的版本中的KVM子系统中的virt/kvm/assigned-dev.c中的“kvm_vm_ioctl_assign_device”函数中存在漏洞,该漏洞源于程序没有验证访问PCI配置空间和BAR资源的权限。主机操作系统攻击者可通过KVM_ASSIGN_PCI_DEVICE操作利用该漏洞分配PIC设备,也
CVSS Information
N/A
Vulnerability Type
N/A