Public bug reported: The KVM implementation in the Linux kernel before 2.6.36 does not properly reload the FS and GS segment registers, which allows host OS users to cause a denial of service (host OS crash) via a KVM_RUN ioctl call in conjunction with a modified Local Descriptor Table (LDT).
** Affects: linux (Ubuntu) Importance: Medium Status: Fix Released ** Affects: linux (Ubuntu Maverick) Importance: Medium Assignee: Stefan Bader (stefan-bader-canonical) Status: In Progress ** Affects: linux (Ubuntu Hardy) Importance: Medium Assignee: Stefan Bader (stefan-bader-canonical) Status: In Progress ** Affects: linux (Ubuntu Karmic) Importance: Medium Assignee: Stefan Bader (stefan-bader-canonical) Status: In Progress ** Changed in: linux (Ubuntu) Importance: Undecided => Medium ** Changed in: linux (Ubuntu) Status: New => In Progress ** Changed in: linux (Ubuntu) Assignee: (unassigned) => Stefan Bader (stefan-bader-canonical) ** Also affects: linux (Ubuntu Hardy) Importance: Undecided Status: New ** Also affects: linux (Ubuntu Karmic) Importance: Undecided Status: New ** Also affects: linux (Ubuntu Maverick) Importance: Undecided Status: New ** Changed in: linux (Ubuntu) Status: In Progress => Fix Released ** Changed in: linux (Ubuntu Hardy) Importance: Undecided => Medium ** Changed in: linux (Ubuntu Hardy) Status: New => In Progress ** Changed in: linux (Ubuntu Hardy) Assignee: (unassigned) => Stefan Bader (stefan-bader-canonical) ** Changed in: linux (Ubuntu Karmic) Importance: Undecided => Medium ** Changed in: linux (Ubuntu Karmic) Status: New => In Progress ** Changed in: linux (Ubuntu Karmic) Assignee: (unassigned) => Stefan Bader (stefan-bader-canonical) ** Changed in: linux (Ubuntu Maverick) Importance: Undecided => Medium ** Changed in: linux (Ubuntu Maverick) Status: New => In Progress ** Changed in: linux (Ubuntu Maverick) Assignee: (unassigned) => Stefan Bader (stefan-bader-canonical) ** Changed in: linux (Ubuntu) Assignee: Stefan Bader (stefan-bader-canonical) => (unassigned) ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2010-3698 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/707000 Title: CVE-2010-3698 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs