CVE-2010-3881
Bug #717124 reported by
Stefan Bader
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| linux (Ubuntu) |
Fix Released
|
Low
|
Unassigned | ||
| Dapper |
Invalid
|
Low
|
Unassigned | ||
| Hardy |
Invalid
|
Low
|
Unassigned | ||
| Karmic |
Invalid
|
Low
|
Unassigned | ||
| Lucid |
Fix Released
|
Low
|
Unassigned | ||
| Maverick |
Fix Released
|
Low
|
Unassigned | ||
| Natty |
Fix Released
|
Low
|
Unassigned | ||
Bug Description
arch/x86/kvm/x86.c in the Linux kernel before 2.6.36.2 does not initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory via read operations on the /dev/kvm device.
CVE References
Revision history for this message
| Stefan Bader (smb) wrote | #1 |
| visibility: | private → public |
| Changed in linux (Ubuntu Natty): | |
| status: | In Progress → Fix Released |
Revision history for this message
| Stefan Bader (smb) wrote | #2 |
| Changed in linux (Ubuntu Dapper): | |
| importance: | Undecided → Low |
| status: | New → Invalid |
Revision history for this message
| Stefan Bader (smb) wrote | #3 |
| Changed in linux (Ubuntu Maverick): | |
| importance: | Undecided → Low |
| status: | New → Fix Released |
Revision history for this message
| Stefan Bader (smb) wrote | #4 |
| Changed in linux (Ubuntu Lucid): | |
| status: | New → Fix Released |
| importance: | Undecided → Low |
Revision history for this message
| Stefan Bader (smb) wrote | #5 |
| Changed in linux (Ubuntu Karmic): | |
| importance: | Undecided → Low |
| status: | New → Invalid |
Revision history for this message
| Stefan Bader (smb) wrote | #6 |
| Changed in linux (Ubuntu Hardy): | |
| importance: | Undecided → Low |
| status: | New → Invalid |
| Changed in linux (Ubuntu Natty): | |
| assignee: | Stefan Bader (stefan-bader-canonical) → nobody |
To post a comment you must log in.
Upstream fix in 2.6.37-rc2.