VYPR
Unrated severityNVD Advisory· Published Jan 22, 2013· Updated Jun 16, 2026

CVE-2012-4461

CVE-2012-4461

Description

The KVM subsystem in the Linux kernel before 3.6.9, when running on hosts that use qemu userspace without XSAVE, allows local users to cause a denial of service (kernel OOPS) by using the KVM_SET_SREGS ioctl to set the X86_CR4_OSXSAVE bit in the guest cr4 register, then calling the KVM_RUN ioctl.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9
  • Linux/Kernel9 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: <=3.6.8
    • cpe:2.3:o:linux:linux_kernel:3.6:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:3.6.1:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:3.6.2:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:3.6.3:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:3.6.4:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:3.6.5:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:3.6.6:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:3.6.7:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.