CVE-2013-1943
16.07.2013, 14:08
The KVM subsystem in the Linux kernel before 3.0 does not check whether kernel addresses are specified during allocation of memory slots for use in a guest's physical address space, which allows local users to gain privileges or obtain sensitive information from kernel memory via a crafted application, related to arch/x86/kvm/paging_tmpl.h and virt/kvm/kvm_main.c.Enginsight
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 𝑥 < 3.0 |
| redhat | enterprise_linux | 5.0 |
| redhat | enterprise_linux_eus | 6.2 |
| redhat | enterprise_linux_eus | 6.3 |
| canonical | ubuntu_linux | 10.04 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| linux |
| ||||||||||||
| linux-armadaxp |
| ||||||||||||
| linux-ec2 |
| ||||||||||||
| linux-flo |
| ||||||||||||
| linux-fsl-imx51 |
| ||||||||||||
| linux-goldfish |
| ||||||||||||
| linux-grouper |
| ||||||||||||
| linux-linaro-omap |
| ||||||||||||
| linux-linaro-shared |
| ||||||||||||
| linux-linaro-vexpress |
| ||||||||||||
| linux-lts-backport-maverick |
| ||||||||||||
| linux-lts-quantal |
| ||||||||||||
| linux-lts-raring |
| ||||||||||||
| linux-maguro |
| ||||||||||||
| linux-mako |
| ||||||||||||
| linux-manta |
| ||||||||||||
| linux-mvl-dove |
| ||||||||||||
| linux-qcm-msm |
| ||||||||||||
| linux-ti-omap4 |
|
Common Weakness Enumeration
References