CVE-2009-3290

Name	CVE-2009-3290
Description	The kvm_emulate_hypercall function in arch/x86/kvm/x86.c in KVM in the Linux kernel 2.6.25-rc1, and other versions before 2.6.31, when running on x86 systems, does not prevent access to MMU hypercalls from ring 0, which allows local guest OS users to cause a denial of service (guest kernel crash) and read or write guest kernel memory via unspecified "random addresses."
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-1907-1, DSA-1915-1, DTSA-203-1
Debian Bugs	548975

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
kvm	source	lenny	72+dfsg-5~lenny3		DSA-1907-1
kvm	source	squeeze	72+dfsg-5+squeeze1		DTSA-203-1
kvm	source	(unstable)	85+dfsg-4.1	high		548975
linux-2.6	source	etch	(not affected)
linux-2.6	source	lenny	2.6.26-19lenny1		DSA-1915-1
linux-2.6	source	(unstable)	2.6.31-1	medium
linux-2.6.24	source	(unstable)	(not affected)

Notes

[etch] - linux-2.6 <not-affected> (introduced in 2.6.25)
- linux-2.6.24 <not-affected> (introduced in 2.6.25)