CVE-2009-3638

CVE-2009-3638 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Integer overflow in the kvm_dev_ioctl_get_supported_cpuid function in arch/x86/kvm/x86.c in the KVM subsystem in the Linux kernel before 2.6.31.4 allows local users to have an unspecified impact via a KVM_GET_SUPPORTED_CPUID request to the kvm_arch_dev_ioctl function.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.