Unrated severityNVD Advisory· Published Jan 22, 2013· Updated Apr 29, 2026
CVE-2012-2137
CVE-2012-2137
Description
Buffer overflow in virt/kvm/irq_comm.c in the KVM subsystem in the Linux kernel before 3.2.24 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to Message Signaled Interrupts (MSI), irq routing entries, and an incorrect check by the setup_routing_entry function before invoking the kvm_set_irq function.
Affected products
4cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*+ 2 more
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
15- git.kernel.orgnvdVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.htmlnvdMailing ListThird Party Advisory
- marc.infonvdMailing ListThird Party Advisory
- rhn.redhat.com/errata/RHSA-2012-0743.htmlnvdThird Party Advisory
- ubuntu.5.n6.nabble.com/PATCH-Oneiric-CVE-2012-2137-KVM-Fix-buffer-overflow-in-kvm-set-irq-td4990566.htmlnvdThird Party Advisory
- ubuntu.com/usn/usn-1529-1nvdThird Party Advisory
- ubuntu.com/usn/usn-1607-1nvdThird Party Advisory
- www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.24nvdVendor Advisory
- www.securityfocus.com/bid/54063nvdThird Party AdvisoryVDB Entry
- www.ubuntu.com/usn/USN-1594-1nvdThird Party Advisory
- www.ubuntu.com/usn/USN-1606-1nvdThird Party Advisory
- www.ubuntu.com/usn/USN-1609-1nvdThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- secunia.com/advisories/50952nvdBroken Link
- secunia.com/advisories/50961nvdBroken Link
News mentions
0No linked articles in our index yet.