Candidate: CVE-2010-2938
PublicDate: 2010-10-08 21:00:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2938
Description:
 arch/x86/hvm/vmx/vmcs.c in the virtual-machine control structure (VMCS)
 implementation in the Linux kernel 2.6.18 on Red Hat Enterprise Linux
 (RHEL) 5, when an Intel platform without Extended Page Tables (EPT)
 functionality is used, accesses VMCS fields without verifying hardware
 support for these fields, which allows local users to cause a denial of
 service (host OS crash) by requesting a VMCS dump for a fully virtualized
 Xen guest.
Ubuntu-Description: 
Notes: 
 kees> for full-virtualization issues, add qemu (and kvm)
Bugs: 
Priority: low
Discovered-by:
Assigned-to: 
CVSS: 

Patches_xen-3.1:
upstream_xen-3.1: needs-triage
dapper_xen-3.1: DNE
hardy_xen-3.1: ignored (reached end-of-life)
jaunty_xen-3.1: DNE
karmic_xen-3.1: DNE
lucid_xen-3.1: DNE
maverick_xen-3.1: DNE
natty_xen-3.1: DNE
oneiric_xen-3.1: DNE
devel_xen-3.1: DNE

Patches_xen-3.2:
 upstream: http://xenbits.xensource.com/xen-unstable.hg?rev/15911
upstream_xen-3.2: not-affected
dapper_xen-3.2: DNE
hardy_xen-3.2: not-affected
jaunty_xen-3.2: DNE
karmic_xen-3.2: DNE
lucid_xen-3.2: DNE
maverick_xen-3.2: DNE
natty_xen-3.2: DNE
oneiric_xen-3.2: DNE
devel_xen-3.2: DNE

Patches_xen-3.3:
upstream_xen-3.3: not-affected
dapper_xen-3.3: DNE
hardy_xen-3.3: DNE
jaunty_xen-3.3: not-affected
karmic_xen-3.3: not-affected
lucid_xen-3.3: not-affected
maverick_xen-3.3: not-affected
natty_xen-3.3: not-affected
oneiric_xen-3.3: DNE
devel_xen-3.3: DNE