LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Kernel prepatch 3.9-rc6

LWN.net Weekly Edition for April 4, 2013

LWN.net Weekly Edition for March 28, 2013

A kernel change breaks GlusterFS

PyCon: Evangelizing Python

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

kernel: multiple vulnerabilities

Package(s):kernel CVE #(s):CVE-2013-0228 CVE-2013-0313 CVE-2013-0871
Created:February 22, 2013 Updated:April 3, 2013
Description: From the Mageia advisory:

Linux kernel when returning from an iret assumes that %ds segment is safe and uses it to reference various per-cpu related fields. Unfortunately the user can modify the LDT and provide a NULL one. Whenever an iret is called we end up in xen_iret and try to use the %ds segment and cause an general protection fault. Malicious or buggy unprivileged user space can cause the guest kernel to crash, or permit a privilege escalation within the guest, or operate erroneously. (CVE-2013-0228)

Linux kernel built with Extended Verification Module(EVM) and configured properly, is vulnerable to a NULL pointer de-reference flaw, caused by accessing extended attribute routines of sockfs inode object. An unprivileged user/program could use this to crash the kernel, resulting in DoS. (CVE-2013-0313)

A race condition in ptrace can lead to kernel stack corruption and arbitrary kernel-mode code execution. (CVE-2013-0871)

Alerts:
Mageia MGASA-2013-0066 2013-02-22
Mageia MGASA-2013-0067 2013-02-22
Mageia MGASA-2013-0068 2013-02-22
Mageia MGASA-2013-0069 2013-02-22
Mageia MGASA-2013-0070 2013-02-22
Ubuntu USN-1736-1 2013-02-21
Ubuntu USN-1739-1 2013-02-21
Ubuntu USN-1741-1 2013-02-21
Ubuntu USN-1744-1 2013-02-21
Ubuntu USN-1740-1 2013-02-21
Ubuntu USN-1742-1 2013-02-21
Ubuntu USN-1745-1 2013-02-21
Ubuntu USN-1737-1 2013-02-21
Ubuntu USN-1738-1 2013-02-21
Ubuntu USN-1743-1 2013-02-21
Fedora FEDORA-2013-2597 2013-02-24
SUSE SUSE-SU-2013:0341-1 2013-02-25
Debian DSA-2632-1 2013-02-25
Red Hat RHSA-2013:0567-01 2013-02-26
Oracle ELSA-2013-2507 2013-02-28
Oracle ELSA-2013-0567 2013-02-28
openSUSE openSUSE-SU-2013:0396-1 2013-03-05
Ubuntu USN-1756-1 2013-03-06
CentOS CESA-2013:0567 2013-03-09
Red Hat RHSA-2013:0621-01 2013-03-11
Red Hat RHSA-2013:0622-01 2013-03-11
CentOS CESA-2013:0621 2013-03-12
Scientific Linux SL-kern-20130312 2013-03-12
Red Hat RHSA-2013:0630-01 2013-03-12
CentOS CESA-2013:0630 2013-03-13
Oracle ELSA-2013-0621 2013-03-12
Oracle ELSA-2013-0630 2013-03-12
Ubuntu USN-1760-1 2013-03-12
Scientific Linux SL-kern-20130314 2013-03-14
Scientific Linux SL-kern-20130314 2013-03-14
Ubuntu USN-1767-1 2013-03-18
Ubuntu USN-1769-1 2013-03-18
Ubuntu USN-1768-1 2013-03-18
Red Hat RHSA-2013:0661-01 2013-03-19
Red Hat RHSA-2013:0662-01 2013-03-19
Fedora FEDORA-2013-3909 2013-03-22
Ubuntu USN-1778-1 2013-03-22
Scientific Linux SL-kern-20130325 2013-03-25
Ubuntu USN-1781-1 2013-03-26
Red Hat RHSA-2013:0695-01 2013-04-02
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds