Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The KVM subsystem in the Linux kernel before 3.0 does not check whether kernel addresses are specified during allocation of memory slots for use in a guest's physical address space, which allows local users to gain privileges or obtain sensitive information from kernel memory via a crafted application, related to arch/x86/kvm/paging_tmpl.h and virt/kvm/kvm_main.c.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel 输入验证错误漏洞
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel 2.6.39.4及之前的版本存在输入验证错误漏洞,该漏洞源于程序检查有效的用户空间内存缺少kvm_set_memory_region()函数。本地攻击者可借助特制的应用程序利用该漏洞获得特权或获得来自内核内存的敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A