[Bug 707000] [NEW] CVE-2010-3698

Mon, 24 Jan 2011 09:11:16 -0800 

Public bug reported:

The KVM implementation in the Linux kernel before 2.6.36 does not properly
reload the FS and GS segment registers, which allows host OS users to cause
a denial of service (host OS crash) via a KVM_RUN ioctl call in conjunction
with a modified Local Descriptor Table (LDT).

** Affects: linux (Ubuntu)
     Importance: Medium
         Status: Fix Released

** Affects: linux (Ubuntu Maverick)
     Importance: Medium
     Assignee: Stefan Bader (stefan-bader-canonical)
         Status: In Progress

** Affects: linux (Ubuntu Hardy)
     Importance: Medium
     Assignee: Stefan Bader (stefan-bader-canonical)
         Status: In Progress

** Affects: linux (Ubuntu Karmic)
     Importance: Medium
     Assignee: Stefan Bader (stefan-bader-canonical)
         Status: In Progress

** Changed in: linux (Ubuntu)
   Importance: Undecided => Medium

** Changed in: linux (Ubuntu)
       Status: New => In Progress

** Changed in: linux (Ubuntu)
     Assignee: (unassigned) => Stefan Bader (stefan-bader-canonical)

** Also affects: linux (Ubuntu Hardy)
   Importance: Undecided
       Status: New

** Also affects: linux (Ubuntu Karmic)
   Importance: Undecided
       Status: New

** Also affects: linux (Ubuntu Maverick)
   Importance: Undecided
       Status: New

** Changed in: linux (Ubuntu)
       Status: In Progress => Fix Released

** Changed in: linux (Ubuntu Hardy)
   Importance: Undecided => Medium

** Changed in: linux (Ubuntu Hardy)
       Status: New => In Progress

** Changed in: linux (Ubuntu Hardy)
     Assignee: (unassigned) => Stefan Bader (stefan-bader-canonical)

** Changed in: linux (Ubuntu Karmic)
   Importance: Undecided => Medium

** Changed in: linux (Ubuntu Karmic)
       Status: New => In Progress

** Changed in: linux (Ubuntu Karmic)
     Assignee: (unassigned) => Stefan Bader (stefan-bader-canonical)

** Changed in: linux (Ubuntu Maverick)
   Importance: Undecided => Medium

** Changed in: linux (Ubuntu Maverick)
       Status: New => In Progress

** Changed in: linux (Ubuntu Maverick)
     Assignee: (unassigned) => Stefan Bader (stefan-bader-canonical)

** Changed in: linux (Ubuntu)
     Assignee: Stefan Bader (stefan-bader-canonical) => (unassigned)

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-3698

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/707000

Title:
  CVE-2010-3698

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to