VYPR
Unrated severityNVD Advisory· Published Mar 22, 2013· Updated Jun 16, 2026

CVE-2013-1798

CVE-2013-1798

Description

The ioapic_read_indirect function in virt/kvm/ioapic.c in the Linux kernel through 3.8.4 does not properly handle a certain combination of invalid IOAPIC_REG_SELECT and IOAPIC_REG_WINDOW operations, which allows guest OS users to obtain sensitive information from host OS memory or cause a denial of service (host OS OOPS) via a crafted application.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • Linux/Kernel6 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: <=3.8.4
    • cpe:2.3:o:linux:linux_kernel:3.8.0:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:3.8.1:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:3.8.2:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:3.8.3:*:*:*:*:*:*:*
    • (no CPE)range: <=3.8.4

Patches

Vulnerability mechanics

References

17

News mentions

0

No linked articles in our index yet.