CVE-2013-0190
Priority
Medium
Description
The xen_failsafe_callback function in Xen for the Linux kernel 2.6.23 and
other versions, when running a 32-bit PVOPS guest, allows local users to
cause a denial of service (guest crash) by triggering an iret fault,
leading to use of an incorrect stack pointer and stack corruption.
other versions, when running a 32-bit PVOPS guest, allows local users to
cause a denial of service (guest crash) by triggering an iret fault,
leading to use of an incorrect stack pointer and stack corruption.
Ubuntu-Description
Andrew Cooper of Citrix reported a Xen stack corruption in the Linux
kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest
kernel to crash, or operate erroneously.
kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest
kernel to crash, or operate erroneously.
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0190
http://www.openwall.com/lists/oss-security/2013/01/16/8
http://www.ubuntu.com/usn/usn-1719-1
http://www.ubuntu.com/usn/usn-1720-1
http://www.ubuntu.com/usn/usn-1725-1
http://www.ubuntu.com/usn/usn-1728-1
http://www.ubuntu.com/usn/usn-1767-1
http://www.ubuntu.com/usn/usn-1768-1
http://www.ubuntu.com/usn/usn-1769-1
http://www.ubuntu.com/usn/usn-1774-1
http://www.openwall.com/lists/oss-security/2013/01/16/8
http://www.ubuntu.com/usn/usn-1719-1
http://www.ubuntu.com/usn/usn-1720-1
http://www.ubuntu.com/usn/usn-1725-1
http://www.ubuntu.com/usn/usn-1728-1
http://www.ubuntu.com/usn/usn-1767-1
http://www.ubuntu.com/usn/usn-1768-1
http://www.ubuntu.com/usn/usn-1769-1
http://www.ubuntu.com/usn/usn-1774-1
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.32-350.60) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (3.0.0-31.48~lucid1) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | ignored (abandoned) |
| Ubuntu 12.10 (Quantal Quetzal): | ignored (abandoned) |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | ignored (abandoned) |
| Ubuntu 12.10 (Quantal Quetzal): | ignored (abandoned) |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored (abandoned) |
| Ubuntu 12.04 LTS (Precise Pangolin): | ignored (abandoned) |
| Ubuntu 12.10 (Quantal Quetzal): | ignored (abandoned) |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | released (3.5.0-26.40~precise1) |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Patches:
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored (reached end-of-life) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored (reached end-of-life) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (2.6.32-45.103) |
| Ubuntu 12.04 LTS (Precise Pangolin): | released (3.2.0-39.62) |
| Ubuntu 12.10 (Quantal Quetzal): | released (3.5.0-26.40) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (3.8.0-3.7) |
| Ubuntu 13.10 (Saucy Salamander): | not-affected (3.8.0-3.7) |
Patches:
| Patch: | http://seclists.org/oss-sec/2013/q1/att-96/xsa40.patch |
| Introduced by 5ead97c84fa7d63a6a7a2f4e9f18f452bd109045 | Fixed by 9174adbee4a9a49d0139f5d71969852b36720809 |
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected |
| Ubuntu 13.04 (Raring Ringtail): | not-affected |
| Ubuntu 13.10 (Saucy Salamander): | not-affected |
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | ignored (abandoned) |
| Ubuntu 12.10 (Quantal Quetzal): | ignored (abandoned) |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored (reached end-of-life, does not affect buildd) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | released (3.8~rc5) |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |