CVE-2009-2287

Publication date 1 July 2009

Last updated 24 July 2024

Ubuntu priority

Medium

Why this priority?

The kvm_arch_vcpu_ioctl_set_sregs function in the KVM in Linux kernel 2.6 before 2.6.30, when running on x86 systems, does not validate the page table root in a KVM_SET_SREGS call, which allows local users to cause a denial of service (crash or hang) via a crafted cr3 value, which triggers a NULL pointer dereference in the gfn_to_rmap function.

From the Ubuntu Security Team

Matt T. Yourst discovered that KVM did not correctly validate the page table root. A local attacker could exploit this to crash the system, leading to a denial of service.

Read the notes from the security team

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
kvm 11.04 natty Not in release
10.10 maverick Not in release
10.04 LTS lucid Not in release
9.10 karmic Not in release
9.04 jaunty Ignored end of life
8.10 intrepid Ignored end of life, was needed
8.04 LTS hardy Ignored end of life
6.06 LTS dapper Not in release
linux 11.04 natty
Not affected
10.10 maverick
Not affected
10.04 LTS lucid
Not affected
9.10 karmic
Not affected
9.04 jaunty
Fixed 2.6.28-14.47
8.10 intrepid
Fixed 2.6.27-14.37
8.04 LTS hardy
Fixed 2.6.24-24.57
6.06 LTS dapper Not in release
linux-ec2 11.04 natty Not in release
10.10 maverick Ignored end of life
10.04 LTS lucid
Not affected
9.10 karmic
Not affected
9.04 jaunty Not in release
8.10 intrepid Not in release
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release
linux-fsl-imx51 11.04 natty Not in release
10.10 maverick Not in release
10.04 LTS lucid
Not affected
9.10 karmic
Not affected
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release
linux-lts-backport-maverick 11.04 natty Not in release
10.10 maverick Not in release
10.04 LTS lucid
Not affected
9.10 karmic Not in release
9.04 jaunty Not in release
8.10 intrepid Not in release
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release
linux-mvl-dove 11.04 natty Not in release
10.10 maverick
Not affected
10.04 LTS lucid
Not affected
9.10 karmic Ignored end of life
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release
linux-source-2.6.15 11.04 natty Not in release
10.10 maverick Not in release
10.04 LTS lucid Not in release
9.10 karmic Not in release
9.04 jaunty Not in release
8.10 intrepid Not in release
8.04 LTS hardy Not in release
6.06 LTS dapper
Fixed 2.6.15-54.78
linux-ti-omap4 11.04 natty
Not affected
10.10 maverick
Not affected
10.04 LTS lucid Not in release
9.10 karmic Not in release
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release
qemu-kvm 11.04 natty
Not affected
10.10 maverick
Not affected
10.04 LTS lucid
Not affected
9.10 karmic
Not affected
9.04 jaunty Not in release
8.10 intrepid Not in release
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release

Notes

jdstrand

code does not exist in qemu-kvm, and is part of the kernel code

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
kvm
linux

References

Related Ubuntu Security Notices (USN)

    • USN-807-1
    • Linux kernel vulnerabilities
    • 28 July 2009

Other references