PublicDateAtUSN: 2010-02-12
Candidate: CVE-2010-0298
PublicDate: 2010-02-12 19:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0298
 https://ubuntu.com/security/notices/USN-947-1
Description:
 The x86 emulator in KVM 83 does not use the Current Privilege Level (CPL)
 and I/O Privilege Level (IOPL) in determining the memory access available
 to CPL3 code, which allows guest OS users to cause a denial of service
 (guest OS crash) or gain privileges on the guest OS by leveraging access to
 a (1) IO port or (2) MMIO region, a related issue to CVE-2010-0306.
Ubuntu-Description:
 It was discovered that KVM did not correctly limit certain privileged IO
 accesses on x86. Processes in the guest OS with access to IO regions could
 gain further privileges within the guest OS.
Notes:
 kees> access to IO/MMIO requires elevated privileges, which already allows
 kees> for guest OS disruption.
 kees> No working upstream solution yet.
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_linux:
 vendor: https://bugzilla.redhat.com/attachment.cgi?id=386981&action=diff
upstream_linux: needed
dapper_linux: DNE
hardy_linux: released (2.6.24-28.70)
intrepid_linux: ignored (was needed [reached end-of-life] now end-of-life)
jaunty_linux: released (2.6.28-19.61)
karmic_linux: released (2.6.31-22.60)
lucid_linux: released (2.6.32-22.35)
maverick_linux: not-affected
natty_linux: not-affected
devel_linux: not-affected

Patches_linux-fsl-imx51:
upstream_linux-fsl-imx51: needs-triage
dapper_linux-fsl-imx51: DNE
hardy_linux-fsl-imx51: DNE
karmic_linux-fsl-imx51: released (2.6.31-112.28)
lucid_linux-fsl-imx51: released (2.6.31-608.14)
maverick_linux-fsl-imx51: DNE
natty_linux-fsl-imx51: DNE
devel_linux-fsl-imx51: DNE

upstream_linux-source-2.6.15: not-affected
dapper_linux-source-2.6.15: not-affected
hardy_linux-source-2.6.15: DNE
intrepid_linux-source-2.6.15: DNE
jaunty_linux-source-2.6.15: DNE
karmic_linux-source-2.6.15: DNE
lucid_linux-source-2.6.15: DNE
maverick_linux-source-2.6.15: DNE
natty_linux-source-2.6.15: DNE
devel_linux-source-2.6.15: DNE

Patches_kvm:
Tags_kvm: universe-binary
upstream_kvm: needed
dapper_kvm: DNE
hardy_kvm: ignored (reached end-of-life)
intrepid_kvm: needed (reached end-of-life)
jaunty_kvm: ignored (reached end-of-life)
karmic_kvm: DNE
lucid_kvm: DNE
maverick_kvm: DNE
natty_kvm: DNE
devel_kvm: DNE

upstream_linux-ec2: needed
dapper_linux-ec2: DNE
hardy_linux-ec2: DNE
intrepid_linux-ec2: DNE
jaunty_linux-ec2: DNE
karmic_linux-ec2: released (2.6.31-307.15)
lucid_linux-ec2: released (2.6.32-22.35)
maverick_linux-ec2: ignored (binary supplied by "linux" now)
natty_linux-ec2: DNE
devel_linux-ec2: DNE

Patches_linux-ti-omap4:
upstream_linux-ti-omap4: needs-triage
dapper_linux-ti-omap4: DNE
hardy_linux-ti-omap4: DNE
karmic_linux-ti-omap4: DNE
lucid_linux-ti-omap4: DNE
maverick_linux-ti-omap4: not-affected
natty_linux-ti-omap4: not-affected
devel_linux-ti-omap4: not-affected

upstream_linux-lts-backport-maverick: needed
dapper_linux-lts-backport-maverick: DNE
hardy_linux-lts-backport-maverick: DNE
intrepid_linux-lts-backport-maverick: DNE
jaunty_linux-lts-backport-maverick: DNE
karmic_linux-lts-backport-maverick: DNE
lucid_linux-lts-backport-maverick: not-affected
maverick_linux-lts-backport-maverick: DNE
natty_linux-lts-backport-maverick: DNE
devel_linux-lts-backport-maverick: DNE

Patches_linux-mvl-dove:
upstream_linux-mvl-dove: needs-triage
dapper_linux-mvl-dove: DNE
hardy_linux-mvl-dove: DNE
karmic_linux-mvl-dove: released (2.6.31-214.28)
lucid_linux-mvl-dove: released (2.6.32-205.18)
maverick_linux-mvl-dove: not-affected
natty_linux-mvl-dove: DNE
devel_linux-mvl-dove: DNE