CVE-2013-0228

Published: 01 March 2013

The xen_iret function in arch/x86/xen/xen-asm_32.S in the Linux kernel before 3.7.9 on 32-bit Xen paravirt_ops platforms does not properly handle an invalid value in the DS segment register, which allows guest OS users to gain guest OS privileges via a crafted application.

From the Ubuntu security team

Andrew Jones discovered a flaw with the xen_iret function in Linux kernel's Xen virtualizeation. In the 32-bit Xen paravirt platform an unprivileged guest OS user could exploit this flaw to cause a denial of service (crash the system) or gain guest OS privilege.

Priority

Medium

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Not vulnerable
(4.2.0-16.19)
Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable
(3.11.0-12.19)
Ubuntu 12.04 ESM (Precise Pangolin)
Released (3.2.0-39.62)
Patches:
Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed by 13d2b4d11d69a92574a55bfd985cfb0ca77aebdc
linux-ec2
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-mvl-dove
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-ti-omap4
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist
(precise was released [3.2.0-1427.36])
linux-lts-backport-maverick
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-fsl-imx51
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-lts-backport-oneiric
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-linaro-omap
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist
(precise was ignored [abandoned])
linux-linaro-shared
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist
(precise was ignored [abandoned])
linux-linaro-vexpress
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist
(precise was ignored [abandoned])
linux-qcm-msm
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist
(precise was ignored [abandoned])
linux-armadaxp
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist
(precise was released [3.2.0-1615.23])
This package is not directly supported by the Ubuntu Security Team
linux-lts-quantal
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist
(precise was released [3.5.0-27.46~precise1])
Patches:
DNE
linux-lts-raring
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist
(precise was not-affected [3.8.0-19.30~precise1])
linux-goldfish
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Not vulnerable
(3.4.0-4.27)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was ignored [was needed now end-of-life])
Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-grouper
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was ignored [abandoned])
Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-maguro
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was ignored [abandoned])
Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-mako
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Ignored
(abandoned)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was ignored [was needed now end-of-life])
Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-manta
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected [3.4.0-5.22])
Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-flo
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Ignored
(abandoned)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was ignored [was needed now end-of-life])
Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-lts-trusty
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Not vulnerable
(3.13.0-24.46~precise1)
linux-lts-utopic
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected [3.16.0-25.33~14.04.2])
Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-lts-vivid
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected [3.19.0-18.18~14.04.1])
Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-lts-wily
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected [4.2.0-18.22~14.04.1])
Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-raspi2
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Not vulnerable
(4.2.0-1013.19)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-lts-xenial
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable
(4.4.0-13.29~14.04.1)
Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-snapdragon
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Not vulnerable
(4.4.0-1012.12)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-aws
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Not vulnerable
(4.4.0-1001.10)
Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable
(4.4.0-1002.2)
Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-hwe-edge
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Not vulnerable
(4.8.0-36.36~16.04.1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-hwe
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Not vulnerable
(4.8.0-36.36~16.04.1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist

linux-gke
Launchpad, Ubuntu, Debian
Upstream
Released (3.8)
Ubuntu 16.04 LTS (Xenial Xerus) Not vulnerable
(4.4.0-1003.3)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Ubuntu 12.04 ESM (Precise Pangolin) Does not exist