2009-07-29 20:03:05 |
Dustin Kirkland |
bug |
|
|
added bug |
2009-07-29 20:03:18 |
Dustin Kirkland |
bug task added |
|
kvm (Ubuntu Hardy) |
|
2009-07-29 20:03:18 |
Dustin Kirkland |
bug task added |
|
kvm (Ubuntu Intrepid) |
|
2009-07-29 20:03:18 |
Dustin Kirkland |
bug task added |
|
kvm (Ubuntu Jaunty) |
|
2009-07-29 20:03:18 |
Dustin Kirkland |
bug task added |
|
kvm (Ubuntu Karmic) |
|
2009-07-29 20:03:33 |
Dustin Kirkland |
kvm (Ubuntu Hardy): status |
New |
In Progress |
|
2009-07-29 20:03:35 |
Dustin Kirkland |
kvm (Ubuntu Intrepid): status |
New |
In Progress |
|
2009-07-29 20:03:37 |
Dustin Kirkland |
kvm (Ubuntu Jaunty): status |
New |
In Progress |
|
2009-07-29 20:03:39 |
Dustin Kirkland |
kvm (Ubuntu Karmic): status |
New |
In Progress |
|
2009-07-29 20:03:42 |
Dustin Kirkland |
kvm (Ubuntu Hardy): importance |
Undecided |
Medium |
|
2009-07-29 20:03:45 |
Dustin Kirkland |
kvm (Ubuntu Jaunty): importance |
Undecided |
Medium |
|
2009-07-29 20:03:47 |
Dustin Kirkland |
kvm (Ubuntu Intrepid): importance |
Undecided |
Medium |
|
2009-07-29 20:03:49 |
Dustin Kirkland |
kvm (Ubuntu Karmic): importance |
Undecided |
Medium |
|
2009-07-29 20:25:06 |
Launchpad Janitor |
kvm (Ubuntu Karmic): status |
In Progress |
Fix Released |
|
2009-07-29 20:25:06 |
Launchpad Janitor |
cve linked |
|
2009-2287 |
|
2009-07-29 20:50:50 |
Dustin Kirkland |
description |
The kvm_arch_vcpu_ioctl_set_sregs function in the KVM in Linux kernel 2.6 before 2.6.30, when running on x86 systems, does not validate the page table root in a KVM_SET_SREGS call, which allows local users to cause a denial of service (crash or hang) via a crafted cr3 value, which triggers a NULL pointer dereference in the gfn_to_rmap function.
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2009-2287 |
The kvm_arch_vcpu_ioctl_set_sregs function in the KVM in Linux kernel 2.6 before 2.6.30, when running on x86 systems, does not validate the page table root in a KVM_SET_SREGS call, which allows local users to cause a denial of service (crash or hang) via a crafted cr3 value, which triggers a NULL pointer dereference in the gfn_to_rmap function.
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2009-2287
This bug was fixed in the upstream Linux kernel in 2.6.30, and this has been applied to all of the Ubuntu linux kernels.
The kvm package also provides kvm-source, which contains the source for the kvm kernel module. This is built using DKMS in intrepid, jaunty, and karmic. In hardy, the package simply provides a tarball. There is no automatic building mechanism.
:-Dustin |
|
2009-07-29 20:51:25 |
Dustin Kirkland |
attachment added |
|
kvm-hardy-security.debdiff http://launchpadlibrarian.net/29678860/kvm-hardy-security.debdiff |
|
2009-07-29 20:51:54 |
Dustin Kirkland |
attachment added |
|
kvm-intrepid-security.debdiff http://launchpadlibrarian.net/29678865/kvm-intrepid-security.debdiff |
|
2009-07-29 20:52:22 |
Dustin Kirkland |
attachment added |
|
kvm-jaunty-security.debdiff http://launchpadlibrarian.net/29678872/kvm-jaunty-security.debdiff |
|
2009-08-11 12:42:08 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/karmic/kvm |
|
2010-04-30 12:59:37 |
Chuck Short |
kvm (Ubuntu Intrepid): status |
In Progress |
Won't Fix |
|
2010-11-23 12:18:42 |
Alex Valavanis |
bug |
|
|
added subscriber Alex Valavanis |
2010-11-23 12:19:00 |
Alex Valavanis |
kvm (Ubuntu Jaunty): status |
In Progress |
Won't Fix |
|
2011-05-26 13:07:15 |
Jamie Strandboge |
kvm (Ubuntu Hardy): status |
In Progress |
Fix Released |
|