oss-sec mailing list archives
Re: KVM possible security issues fixed
From: Eugene Teo <eugene () redhat com>
Date: Tue, 02 Feb 2010 18:15:54 +0800
On 02/02/2010 05:59 PM, Thomas Biege wrote:
Hello, the following was listed in the changelog of kvm - slirp: fix use-after-free - usb-linux.c: fix buffer overflow
Josh wrote some notes here: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0297
- fix potential stack corruption saving MSRs (Eduardo Habkost)
I did not investigate this as it was already fixed in Red Hat Enterprise Linux 5 before we saw the changelog.
Looks like these are security issues. Does someone know more about? Any details about exploitability etc.
Thanks, Eugene -- Eugene Teo / Red Hat Security Response Team
Current thread:
- KVM possible security issues fixed Thomas Biege (Feb 02)
- Re: KVM possible security issues fixed Eugene Teo (Feb 02)
- Re: KVM possible security issues fixed Eren Türkay (Feb 04)
- Re: KVM possible security issues fixed Josh Bressers (Feb 04)
- Re: KVM possible security issues fixed Eren Türkay (Feb 04)
- Re: KVM possible security issues fixed Eugene Teo (Feb 02)