1
PublicDateAtUSN: 2010-12-23
2
Candidate: CVE-2010-3881
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3881
6
https://usn.ubuntu.com/usn/usn-1119-1
7
https://usn.ubuntu.com/usn/usn-1054-1
8
https://usn.ubuntu.com/usn/usn-1093-1
9
https://usn.ubuntu.com/usn/usn-1161-1
10
https://usn.ubuntu.com/usn/usn-1187-1
12
arch/x86/kvm/x86.c in the Linux kernel before 2.6.36.2 does not initialize
13
certain structure members, which allows local users to obtain potentially
14
sensitive information from kernel stack memory via read operations on the
17
Vasiliy Kulikov discovered that kvm did not correctly clear memory. A local
18
attacker could exploit this to read portions of the kernel stack, leading
21
smb> Releases before Lucid do not contain the IOCTL functions affected.
22
smb> For ti-omap, mvl-dove and ec2 the change of KVM should not matter at all.
25
Discovered-by: Vasiliy Kulikov
28
Patches_linux-source-2.6.15:
29
upstream_linux-source-2.6.15: not-affected
30
dapper_linux-source-2.6.15: not-affected
31
hardy_linux-source-2.6.15: DNE
32
karmic_linux-source-2.6.15: DNE
33
lucid_linux-source-2.6.15: DNE
34
maverick_linux-source-2.6.15: DNE
35
natty_linux-source-2.6.15: DNE
36
devel_linux-source-2.6.15: DNE
39
upstream_linux: released (2.6.37~rc2)
41
hardy_linux: not-affected
42
karmic_linux: not-affected
43
lucid_linux: released (2.6.32-28.52)
44
maverick_linux: released (2.6.35-25.43)
45
natty_linux: not-affected
46
devel_linux: not-affected
48
upstream_linux-ec2: released (2.6.37~rc2)
51
karmic_linux-ec2: not-affected
52
lucid_linux-ec2: released (contained in 2.6.32-313.25 in proposed)
53
maverick_linux-ec2: ignored (binary supplied by "linux" now)
57
Patches_linux-ti-omap4:
58
upstream_linux-ti-omap4: needs-triage
59
dapper_linux-ti-omap4: DNE
60
hardy_linux-ti-omap4: DNE
61
karmic_linux-ti-omap4: DNE
62
lucid_linux-ti-omap4: DNE
63
maverick_linux-ti-omap4: released (2.6.35-903.16)
64
natty_linux-ti-omap4: not-affected
65
devel_linux-ti-omap4: not-affected
67
upstream_linux-lts-backport-maverick: released (2.6.36.2)
68
dapper_linux-lts-backport-maverick: DNE
69
hardy_linux-lts-backport-maverick: DNE
70
karmic_linux-lts-backport-maverick: DNE
71
lucid_linux-lts-backport-maverick: released (lts-2.6.35-25.44 in proposed)
72
maverick_linux-lts-backport-maverick: DNE
73
natty_linux-lts-backport-maverick: DNE
74
devel_linux-lts-backport-maverick: DNE
76
Patches_linux-mvl-dove:
77
upstream_linux-mvl-dove: not-affected
78
dapper_linux-mvl-dove: DNE
79
hardy_linux-mvl-dove: DNE
80
karmic_linux-mvl-dove: ignored (abandonded branch)
81
lucid_linux-mvl-dove: released (2.6.32-211.27)
82
maverick_linux-mvl-dove: released (2.6.32-414.30)
83
natty_linux-mvl-dove: DNE
84
devel_linux-mvl-dove: DNE
86
Patches_linux-fsl-imx51:
87
upstream_linux-fsl-imx51: needs-triage
88
dapper_linux-fsl-imx51: DNE
89
hardy_linux-fsl-imx51: DNE
90
karmic_linux-fsl-imx51: not-affected
91
lucid_linux-fsl-imx51: not-affected
92
maverick_linux-fsl-imx51: DNE
93
natty_linux-fsl-imx51: DNE
94
devel_linux-fsl-imx51: DNE
96
Patches_linux-lts-backport-natty:
97
upstream_linux-lts-backport-natty: needs-triage
98
hardy_linux-lts-backport-natty: DNE
99
lucid_linux-lts-backport-natty: not-affected
100
maverick_linux-lts-backport-natty: DNE
101
natty_linux-lts-backport-natty: DNE
102
devel_linux-lts-backport-natty: DNE