Your submission was sent successfully! Close

CVE-2013-1943

Published: 16 July 2013

The KVM subsystem in the Linux kernel before 3.0 does not check whether kernel addresses are specified during allocation of memory slots for use in a guest's physical address space, which allows local users to gain privileges or obtain sensitive information from kernel memory via a crafted application, related to arch/x86/kvm/paging_tmpl.h and virt/kvm/kvm_main.c.

From the Ubuntu security team

Michael S. Tsirkin discovered a flaw in how the Linux kernel's KVM subsystem allocates memory slots for the guest's address space. A local user could exploit this flaw to gain system privileges or obtain sensitive information from kernel memory.

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
lucid
Released (2.6.32-51.113)
precise Not vulnerable
(3.1.0-1.1)
quantal Not vulnerable
(3.4.0-1.1)
raring Not vulnerable
(3.7.0-0.5)
saucy Not vulnerable

trusty Not vulnerable
(3.11.0-12.19)
upstream
Released (3.0~rc3)
Patches:
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by fa3d315a4ce2c0891cdde262562e710d95fba19e
Introduced by

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed by 9e3bb6b6f6a0c535eb053fbf0005a8e79e053374
linux-armadaxp
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Not vulnerable
(3.2.0-1600.1)
quantal Not vulnerable
(3.2.0-1602.5)
raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.0~rc3)
This package is not directly supported by the Ubuntu Security Team
linux-ec2
Launchpad, Ubuntu, Debian
lucid
Released (2.6.32-356.69)
precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.0~rc3)
linux-flo
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Does not exist

quantal Does not exist

saucy Does not exist

trusty Does not exist
(trusty was not-affected [3.4.0-1.3])
upstream
Released (3.0~rc3)
linux-fsl-imx51
Launchpad, Ubuntu, Debian
lucid Ignored
(reached end-of-life, does not affect buildd)
precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.0~rc3)
linux-goldfish
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Does not exist

quantal Does not exist

saucy Ignored

trusty Does not exist
(trusty was not-affected [3.4.0-1.7])
upstream
Released (3.0~rc3)
linux-grouper
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Does not exist

quantal Does not exist

saucy Ignored

trusty Does not exist
(trusty was not-affected [3.1.10-8.28])
upstream
Released (3.0~rc3)
linux-linaro-omap
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Ignored
(abandoned)
quantal Ignored
(abandoned)
raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.0~rc3)
linux-linaro-shared
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Ignored
(abandoned)
quantal Ignored
(abandoned)
raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.0~rc3)
linux-linaro-vexpress
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Ignored
(abandoned)
quantal Ignored
(abandoned)
raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.0~rc3)
linux-lts-backport-maverick
Launchpad, Ubuntu, Debian
lucid Ignored
(reached end-of-life)
precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.0~rc3)
linux-lts-quantal
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Not vulnerable
(3.5.0-18.29~precise1)
quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.0~rc3)
linux-lts-raring
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Not vulnerable
(3.8.0-19.30~precise1)
quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.0~rc3)
linux-maguro
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Does not exist

quantal Does not exist

saucy Ignored

trusty Does not exist
(trusty was not-affected [3.0.0-3.18])
upstream
Released (3.0~rc3)
linux-mako
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Does not exist

quantal Does not exist

saucy Ignored

trusty Does not exist
(trusty was not-affected [3.4.0-3.21])
upstream
Released (3.0~rc3)
linux-manta
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Does not exist

quantal Does not exist

saucy Ignored

trusty Does not exist
(trusty was not-affected [3.4.0-4.19])
upstream
Released (3.0~rc3)
linux-mvl-dove
Launchpad, Ubuntu, Debian
lucid Ignored
(reached end-of-life)
precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.0~rc3)
linux-qcm-msm
Launchpad, Ubuntu, Debian
lucid Ignored
(abandoned)
precise Ignored
(abandoned)
quantal Ignored
(abandoned)
raring Does not exist

saucy Does not exist

trusty Does not exist

upstream
Released (3.0~rc3)
linux-ti-omap4
Launchpad, Ubuntu, Debian
lucid Does not exist

precise Not vulnerable
(3.0.0-1401.2)
quantal Not vulnerable
(3.4.0-201.2)
raring Not vulnerable
(3.5.0-213.20)
saucy Not vulnerable

trusty Does not exist

upstream
Released (3.0~rc3)