Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 457578 (CVE-2013-0228)

Summary: Kernel : "xen_iret()" IRET Handling Denial of Service Weakness (CVE-2013-0228)
Product: Gentoo Security Reporter: Agostino Sarubbo <ago>
Component: KernelAssignee: Gentoo Kernel Security <security-kernel>
Severity: normal CC: kernel
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Package list:
Runtime testing required: ---

Description Agostino Sarubbo gentoo-dev 2013-02-14 18:56:53 UTC
From ${URL} :

A weakness has been reported in Xen, which can be exploited by malicious, local users in a guest 
virtual machine to cause a DoS (Denial of Service).

The weakness is caused due to an error within "xen_iret()" when handling an IRET (Interrupt Return) 
and can be exploited to cause a crash.

Successful exploitation requires that a 32-bit ParaVirtual OPerationS (PVOPS) guest is used.

Apply patch xsa42-pvops-0001-x86-xen-don-t-assume-ds-is-usable-in-xen_iret-for-32.patch

Provided and/or discovered by
Drew Jones

Original Advisory
Comment 1 Agostino Sarubbo gentoo-dev 2013-02-16 07:45:33 UTC
Take a look also at xsa-38
Comment 2 Agostino Sarubbo gentoo-dev 2013-02-18 16:11:20 UTC
(In reply to comment #1)
> Take a look also at xsa-38

Nevermind about this comment. The original issue for this bug regards the kernel instead of app-emulation/xen
Comment 3 Aaron Bauman (RETIRED) gentoo-dev 2018-04-04 18:29:33 UTC
There are no longer any 2.x or <3.7.9 kernels available in the repository with the exception of sys-kernel/xbox-sources which is unsupported by security.