The subpage MMIO initialization functionality in the subpage_register function in exec.c in QEMU-KVM, as used in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and KVM 83, does not properly select the index for access to the callback array, which allows guest OS users to cause a denial of service (guest OS crash) or possibly gain privileges via unspecified vectors.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2010-08-24T17:00:00Z

Updated: 2024-08-07T02:46:48.590Z

Reserved: 2010-07-22T00:00:00Z

Link: CVE-2010-2784

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-08-24T18:00:39.050

Modified: 2024-11-21T01:17:22.310

Link: CVE-2010-2784

cve-icon Redhat

Severity : Important

Publid Date: 2010-07-28T00:00:00Z

Links: CVE-2010-2784 - Bugzilla