Oval Definition:oval:org.mitre.oval:def:22892
Revision Date:2014-05-26Version:20
Title:ELSA-2010:0271: kvm security, bug fix and enhancement update (Important)
Description:The virtio_net_bad_features function in hw/virtio-net.c in the virtio-net driver in the Linux kernel before 2.6.26, when used on a guest OS in conjunction with qemu-kvm 0.11.0 or KVM 83, allows remote attackers to cause a denial of service (guest OS crash, and an associated qemu-kvm process exit) by sending a large amount of network traffic to a TCP port on the guest OS, related to a virtio-net whitelist that includes an improper implementation of TCP Segment Offloading (TSO).
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-0430
CVE-2010-0741
ELSA-2010:0271-05
Platform(s):Oracle Linux 5
Product(s):kvm
Definition Synopsis
  • Oracle Linux 5.x
  • AND rpm test
  • kvm-qemu-img is earlier than 0:83-164.el5
  • OR kvm is earlier than 0:83-164.el5
  • OR kmod-kvm is earlier than 0:83-164.el5
  • OR kvm-tools is earlier than 0:83-164.el5
  • BACK