Launchpad.net

CVE 2010-0741

The virtio_net_bad_features function in hw/virtio-net.c in the virtio-net driver in the Linux kernel before 2.6.26, when used on a guest OS in conjunction with qemu-kvm 0.11.0 or KVM 83, allows remote attackers to cause a denial of service (guest OS crash, and an associated qemu-kvm process exit) by sending a large amount of network traffic to a TCP port on the guest OS, related to a virtio-net whitelist that includes an improper implementation of TCP Segment Offloading (TSO).

Related bugs and status

CVE-2010-0741 (Candidate) is related to these bugs:

Bug #485556: inotify oops with wd == 4096

		In	Importance	Status
485556	inotify oops with wd == 4096	linux (Ubuntu)	Medium	Fix Released
485556	inotify oops with wd == 4096	Linux	Medium	Expired
485556	inotify oops with wd == 4096	linux (Ubuntu Hardy)	Undecided	Fix Released
485556	inotify oops with wd == 4096	linux (Ubuntu Intrepid)	Undecided	Won't Fix
485556	inotify oops with wd == 4096	linux (Ubuntu Lucid)	Medium	Fix Released
485556	inotify oops with wd == 4096	linux (Ubuntu Jaunty)	Undecided	Fix Released
485556	inotify oops with wd == 4096	linux (Ubuntu Dapper)	Undecided	Won't Fix
485556	inotify oops with wd == 4096	linux (Ubuntu Karmic)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2010-0741

Related bugs and status

Related bugs

References