PublicDateAtUSN: 2009-11-29 Candidate: CVE-2009-4031 PublicDate: 2009-11-29 13:07:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4031 https://ubuntu.com/security/notices/USN-894-1 Description: The do_insn_fetch function in arch/x86/kvm/emulate.c in the x86 emulator in the KVM subsystem in the Linux kernel before 2.6.32-rc8-next-20091125 tries to interpret instructions that contain too many bytes to be valid, which allows guest OS users to cause a denial of service (increased scheduling latency) on the host OS via unspecified manipulations related to SMP support. Ubuntu-Description: It was discovered that KVM did not correctly decode certain guest instructions. A local attacker in a guest could exploit this to trigger high scheduling latency in the host, leading to a denial of service. Notes: Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=541160 Priority: medium Discovered-by: Assigned-to: ogasawara CVSS: Patches_linux-source-2.6.15: upstream_linux-source-2.6.15: released (2.6.33~rc1) dapper_linux-source-2.6.15: not-affected hardy_linux-source-2.6.15: DNE intrepid_linux-source-2.6.15: DNE jaunty_linux-source-2.6.15: DNE karmic_linux-source-2.6.15: DNE lucid_linux-source-2.6.15: DNE maverick_linux-source-2.6.15: DNE natty_linux-source-2.6.15: DNE devel_linux-source-2.6.15: DNE Patches_linux: break-fix: - eb3c79e64a70fb8f7473e30fa07e89c1ecc2c9bb upstream_linux: released (2.6.33~rc1) dapper_linux: DNE hardy_linux: released (2.6.24-27.65) intrepid_linux: released (2.6.27-17.45) jaunty_linux: released (2.6.28-18.59) karmic_linux: released (2.6.31-19.56) lucid_linux: not-affected maverick_linux: not-affected natty_linux: not-affected devel_linux: not-affected Patches_linux-fsl-imx51: upstream_linux-fsl-imx51: released (2.6.33~rc1) dapper_linux-fsl-imx51: DNE hardy_linux-fsl-imx51: DNE karmic_linux-fsl-imx51: released (2.6.31-108.21) lucid_linux-fsl-imx51: not-affected maverick_linux-fsl-imx51: DNE natty_linux-fsl-imx51: DNE devel_linux-fsl-imx51: DNE Patches_kvm: Tags_kvm: universe-binary upstream_kvm: needs-triage dapper_kvm: DNE hardy_kvm: ignored (reached end-of-life) intrepid_kvm: needs-triage (reached end-of-life) jaunty_kvm: ignored (reached end-of-life) karmic_kvm: DNE lucid_kvm: DNE maverick_kvm: DNE natty_kvm: DNE devel_kvm: DNE Patches_qemu-kvm: upstream_qemu-kvm: not-affected dapper_qemu-kvm: DNE hardy_qemu-kvm: DNE intrepid_qemu-kvm: DNE jaunty_qemu-kvm: DNE karmic_qemu-kvm: not-affected lucid_qemu-kvm: not-affected maverick_qemu-kvm: not-affected natty_qemu-kvm: not-affected devel_qemu-kvm: not-affected upstream_linux-ec2: released (2.6.33~rc1) dapper_linux-ec2: DNE hardy_linux-ec2: DNE intrepid_linux-ec2: DNE jaunty_linux-ec2: DNE karmic_linux-ec2: released (2.6.31-19.56) lucid_linux-ec2: not-affected maverick_linux-ec2: ignored (binary supplied by "linux" now) natty_linux-ec2: DNE devel_linux-ec2: DNE Patches_linux-ti-omap4: upstream_linux-ti-omap4: released (2.6.33~rc1) dapper_linux-ti-omap4: DNE hardy_linux-ti-omap4: DNE karmic_linux-ti-omap4: DNE lucid_linux-ti-omap4: DNE maverick_linux-ti-omap4: not-affected natty_linux-ti-omap4: not-affected devel_linux-ti-omap4: not-affected upstream_linux-lts-backport-maverick: released (2.6.33~rc1) dapper_linux-lts-backport-maverick: DNE hardy_linux-lts-backport-maverick: DNE intrepid_linux-lts-backport-maverick: DNE jaunty_linux-lts-backport-maverick: DNE karmic_linux-lts-backport-maverick: DNE lucid_linux-lts-backport-maverick: not-affected maverick_linux-lts-backport-maverick: DNE natty_linux-lts-backport-maverick: DNE devel_linux-lts-backport-maverick: DNE Patches_linux-mvl-dove: upstream_linux-mvl-dove: released (2.6.33~rc1) dapper_linux-mvl-dove: DNE hardy_linux-mvl-dove: DNE karmic_linux-mvl-dove: released (2.6.31-211.22) lucid_linux-mvl-dove: not-affected maverick_linux-mvl-dove: not-affected natty_linux-mvl-dove: DNE devel_linux-mvl-dove: DNE