Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 457578 (CVE-2013-0228) - Kernel : "xen_iret()" IRET Handling Denial of Service Weakness (CVE-2013-0228)
Summary: Kernel : "xen_iret()" IRET Handling Denial of Service Weakness (CVE-2013-0228)
Status: RESOLVED OBSOLETE
Alias: CVE-2013-0228
Product: Gentoo Security
Classification: Unclassified
Component: Kernel (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Kernel Security
URL: https://secunia.com/advisories/52071/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-02-14 18:56 UTC by Agostino Sarubbo
Modified: 2018-04-04 18:29 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Agostino Sarubbo gentoo-dev 2013-02-14 18:56:53 UTC
From ${URL} :

Description
A weakness has been reported in Xen, which can be exploited by malicious, local users in a guest 
virtual machine to cause a DoS (Denial of Service).

The weakness is caused due to an error within "xen_iret()" when handling an IRET (Interrupt Return) 
and can be exploited to cause a crash.

Successful exploitation requires that a 32-bit ParaVirtual OPerationS (PVOPS) guest is used.


Solution
Apply patch xsa42-pvops-0001-x86-xen-don-t-assume-ds-is-usable-in-xen_iret-for-32.patch

Provided and/or discovered by
Drew Jones

Original Advisory
XSA-42:
http://www.openwall.com/lists/oss-security/2013/02/13/10
Comment 1 Agostino Sarubbo gentoo-dev 2013-02-16 07:45:33 UTC
Take a look also at xsa-38 http://www.openwall.com/lists/oss-security/2013/02/15/5
Comment 2 Agostino Sarubbo gentoo-dev 2013-02-18 16:11:20 UTC
(In reply to comment #1)
> Take a look also at xsa-38
> http://www.openwall.com/lists/oss-security/2013/02/15/5

Nevermind about this comment. The original issue for this bug regards the kernel instead of app-emulation/xen
Comment 3 Aaron Bauman Gentoo Infrastructure gentoo-dev Security 2018-04-04 18:29:33 UTC
There are no longer any 2.x or <3.7.9 kernels available in the repository with the exception of sys-kernel/xbox-sources which is unsupported by security.