Red Hat Bugzilla – Bug 893728
CVE-2012-2669 hypervkvpd: fails to check origin of netlink messages
Last modified: 2013-01-09 14:14:54 EST
The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netlink communication via a crafted connector message.
This is similar to CVE-2012-5532 (see bug #877572 for some of the confusion that happened with regards to the two CVEs).
This is corrected upstream via:
And the fixed code is present in hypervkvpd-0-0.7.el5 as provided by Red Hat Enterprise Linux 5.
Not vulnerable. This issue did not affect the versions of hypvervkvpd as shipped with Red Hat Enterprise Linux 5.