** Description changed: - Description needed + The ioapic_read_indirect function in virt/kvm/ioapic.c in the Linux + kernel through 3.8.4 does not properly handle a certain combination of + invalid IOAPIC_REG_SELECT and IOAPIC_REG_WINDOW operations, which allows + guest OS users to obtain sensitive information from host OS memory or + cause a denial of service (host OS OOPS) via a crafted application. Break-Fix: - a2c118bfab8bc6b8bb213abfc35201e441693d55
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1158262 Title: CVE-2013-1798 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1158262/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
