Candidate: CVE-2009-4004
Description:
 kernel memory corruption in kvm_vcpu_ioctl_x86_setup_mce
References:
 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4004
 http://www.securityfocus.com/bid/37035/info
 http://xorl.wordpress.com/2009/11/17/linux-kernel-kvm-memory-corruption-on-mce-setup/
Notes:
Bugs:
upstream: released (2.6.32-rc7) [a9e38c3e]
2.6.31-upstream-stable:
linux-2.6: released (2.6.32-1)
2.6.18-etch-security: N/A "kvm introduced in 2.6.25"
2.6.24-etch-security: N/A "kvm introduced in 2.6.25"
2.6.26-lenny-security: N/A "code not present"