Candidate: CVE-2013-1935 PublicDate: 2013-07-16 14:08:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1935 https://rhn.redhat.com/errata/RHSA-2013-0911.html Description: A certain Red Hat patch to the KVM subsystem in the kernel package before 2.6.32-358.11.1.el6 on Red Hat Enterprise Linux (RHEL) 6 does not properly implement the PV EOI feature, which allows guest OS users to cause a denial of service (host OS crash) by leveraging a time window during which interrupts are disabled but copy_to_user function calls are possible. Ubuntu-Description: pv_eoi_put_user called by pv_eoi_set_pending in lapic.c can cause a schedule but is called from with preempt_disable() and local_irq_disable() This lets a local attacker cause a schedule while atomic, denial of service. It is hard to exploit. Notes: Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-1935 https://launchpad.net/bugs/1191915 Priority: medium Discovered-by: Assigned-to: CVSS: Patches_linux: break-fix: ae7a2a3fb6f8b784c2752863f4f1f20c656f76fb b463a6f744a263fccd7da14db1afdc880371a280 upstream_linux: released (3.6~rc1) lucid_linux: not-affected precise_linux: not-affected quantal_linux: not-affected (3.4.0-1.1) raring_linux: not-affected (3.7.0-0.5) devel_linux: not-affected (3.9.0-0.2) Patches_linux-ec2: upstream_linux-ec2: released (3.6~rc1) lucid_linux-ec2: not-affected precise_linux-ec2: DNE quantal_linux-ec2: DNE raring_linux-ec2: DNE devel_linux-ec2: DNE Patches_linux-mvl-dove: upstream_linux-mvl-dove: released (3.6~rc1) lucid_linux-mvl-dove: ignored (reached end-of-life) precise_linux-mvl-dove: DNE quantal_linux-mvl-dove: DNE raring_linux-mvl-dove: DNE devel_linux-mvl-dove: DNE Patches_linux-ti-omap4: upstream_linux-ti-omap4: released (3.6~rc1) lucid_linux-ti-omap4: DNE precise_linux-ti-omap4: not-affected quantal_linux-ti-omap4: not-affected (3.4.0-201.2) raring_linux-ti-omap4: not-affected (3.5.0-213.20) devel_linux-ti-omap4: not-affected (3.5.0-223.34) Patches_linux-lts-backport-maverick: upstream_linux-lts-backport-maverick: released (3.6~rc1) lucid_linux-lts-backport-maverick: ignored (reached end-of-life) precise_linux-lts-backport-maverick: DNE quantal_linux-lts-backport-maverick: DNE raring_linux-lts-backport-maverick: DNE devel_linux-lts-backport-maverick: DNE Patches_linux-fsl-imx51: upstream_linux-fsl-imx51: released (3.6~rc1) lucid_linux-fsl-imx51: ignored (reached end-of-life, does not affect buildd) precise_linux-fsl-imx51: DNE quantal_linux-fsl-imx51: DNE raring_linux-fsl-imx51: DNE devel_linux-fsl-imx51: DNE Patches_linux-linaro-omap: upstream_linux-linaro-omap: released (3.6~rc1) lucid_linux-linaro-omap: DNE precise_linux-linaro-omap: ignored (abandoned) quantal_linux-linaro-omap: ignored (abandoned) raring_linux-linaro-omap: DNE devel_linux-linaro-omap: DNE Patches_linux-linaro-shared: upstream_linux-linaro-shared: released (3.6~rc1) lucid_linux-linaro-shared: DNE precise_linux-linaro-shared: ignored (abandoned) quantal_linux-linaro-shared: ignored (abandoned) raring_linux-linaro-shared: DNE devel_linux-linaro-shared: DNE Patches_linux-linaro-vexpress: upstream_linux-linaro-vexpress: released (3.6~rc1) lucid_linux-linaro-vexpress: DNE precise_linux-linaro-vexpress: ignored (abandoned) quantal_linux-linaro-vexpress: ignored (abandoned) raring_linux-linaro-vexpress: DNE devel_linux-linaro-vexpress: DNE Patches_linux-qcm-msm: upstream_linux-qcm-msm: released (3.6~rc1) lucid_linux-qcm-msm: ignored (abandoned) precise_linux-qcm-msm: ignored (abandoned) quantal_linux-qcm-msm: ignored (abandoned) raring_linux-qcm-msm: DNE devel_linux-qcm-msm: DNE Tags_linux-armadaxp: not-ue Patches_linux-armadaxp: upstream_linux-armadaxp: released (3.6~rc1) lucid_linux-armadaxp: DNE precise_linux-armadaxp: not-affected quantal_linux-armadaxp: not-affected (3.2.0-1602.5) raring_linux-armadaxp: DNE devel_linux-armadaxp: DNE Patches_linux-lts-quantal: upstream_linux-lts-quantal: released (3.6~rc1) lucid_linux-lts-quantal: DNE precise_linux-lts-quantal: not-affected (3.5.0-18.29~precise1) quantal_linux-lts-quantal: DNE raring_linux-lts-quantal: DNE devel_linux-lts-quantal: DNE Patches_linux-lts-raring: upstream_linux-lts-raring: released (3.6~rc1) lucid_linux-lts-raring: DNE precise_linux-lts-raring: not-affected (3.8.0-19.30~precise1) quantal_linux-lts-raring: DNE raring_linux-lts-raring: DNE devel_linux-lts-raring: DNE