CVE-2010-3698
Bug #707000 reported by
Stefan Bader
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
Dapper |
Invalid
|
Medium
|
Unassigned | ||
Hardy |
Fix Released
|
Medium
|
Stefan Bader | ||
Karmic |
Fix Released
|
Medium
|
Stefan Bader | ||
Lucid |
Fix Released
|
Medium
|
Unassigned | ||
Maverick |
Fix Released
|
Medium
|
Stefan Bader | ||
Natty |
Fix Released
|
Medium
|
Unassigned |
Bug Description
The KVM implementation in the Linux kernel before 2.6.36 does not properly
reload the FS and GS segment registers, which allows host OS users to cause
a denial of service (host OS crash) via a KVM_RUN ioctl call in conjunction
with a modified Local Descriptor Table (LDT).
CVE References
- 2010-0435
- 2010-2943
- 2010-3296
- 2010-3297
- 2010-3448
- 2010-3698
- 2010-3699
- 2010-3848
- 2010-3849
- 2010-3850
- 2010-3858
- 2010-3859
- 2010-3865
- 2010-3873
- 2010-3874
- 2010-3875
- 2010-3876
- 2010-3877
- 2010-3880
- 2010-4072
- 2010-4074
- 2010-4078
- 2010-4079
- 2010-4080
- 2010-4081
- 2010-4082
- 2010-4083
- 2010-4157
- 2010-4160
- 2010-4165
- 2010-4169
- 2010-4248
Changed in linux (Ubuntu): | |
assignee: | nobody → Stefan Bader (stefan-bader-canonical) |
importance: | Undecided → Medium |
status: | New → In Progress |
status: | In Progress → Fix Released |
Changed in linux (Ubuntu Hardy): | |
assignee: | nobody → Stefan Bader (stefan-bader-canonical) |
importance: | Undecided → Medium |
status: | New → In Progress |
Changed in linux (Ubuntu Karmic): | |
assignee: | nobody → Stefan Bader (stefan-bader-canonical) |
importance: | Undecided → Medium |
status: | New → In Progress |
Changed in linux (Ubuntu Maverick): | |
assignee: | nobody → Stefan Bader (stefan-bader-canonical) |
importance: | Undecided → Medium |
status: | New → In Progress |
Changed in linux (Ubuntu): | |
assignee: | Stefan Bader (stefan-bader-canonical) → nobody |
security vulnerability: | no → yes |
tags: | added: kernel-cve-tracker |
tags: |
added: verification-done-maverick removed: verification-done |
To post a comment you must log in.
No KVM in Dapper, so not affected.