CVE-2013-4592

Memory leak in the __kvm_set_memory_region function in virt/kvm/kvm_main.c in the Linux kernel before 3.9 allows local users to cause a denial of service (memory consumption) by leveraging certain device access to trigger movement of memory slots.

From the Ubuntu Security Team

A flaw in the handling of memory regions of the kernel virtual machine (KVM) subsystem was discovered. A local user with the ability to assign a device could exploit this flaw to cause a denial of service (memory consumption).

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
linux	14.04 LTS trusty	Not affected
	13.10 saucy	Not affected
	13.04 raring	Ignored end of life, was pending
	12.10 quantal	Fixed 3.5.0-46.70
	12.04 LTS precise	Fixed 3.2.0-58.88
	10.04 LTS lucid	Ignored end of life
linux-armadaxp	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	13.04 raring	Not in release
	12.10 quantal	Fixed 3.5.0-1627.36
	12.04 LTS precise	Fixed 3.2.0-1629.41
	10.04 LTS lucid	Not in release
linux-ec2	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	13.04 raring	Not in release
	12.10 quantal	Not in release
	12.04 LTS precise	Not in release
	10.04 LTS lucid	Ignored end of life
linux-flo	14.04 LTS trusty	Ignored end of life, was needed
	13.10 saucy	Not in release
	12.10 quantal	Not in release
	12.04 LTS precise	Not in release
	10.04 LTS lucid	Not in release
linux-fsl-imx51	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	13.04 raring	Not in release
	12.10 quantal	Not in release
	12.04 LTS precise	Not in release
	10.04 LTS lucid	Ignored end of life
linux-goldfish	14.04 LTS trusty	Ignored end of life, was needed
	13.10 saucy	Ignored
	12.10 quantal	Not in release
	12.04 LTS precise	Not in release
	10.04 LTS lucid	Not in release
linux-grouper	14.04 LTS trusty	Not in release
	13.10 saucy	Ignored
	12.10 quantal	Not in release
	12.04 LTS precise	Not in release
	10.04 LTS lucid	Not in release
linux-linaro-omap	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	13.04 raring	Not in release
	12.10 quantal	Ignored end of life
	12.04 LTS precise	Ignored end of life
	10.04 LTS lucid	Not in release
linux-linaro-shared	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	13.04 raring	Not in release
	12.10 quantal	Ignored end of life
	12.04 LTS precise	Ignored end of life
	10.04 LTS lucid	Not in release
linux-linaro-vexpress	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	13.04 raring	Not in release
	12.10 quantal	Ignored end of life
	12.04 LTS precise	Ignored end of life
	10.04 LTS lucid	Not in release
linux-lts-quantal	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	13.04 raring	Not in release
	12.10 quantal	Not in release
	12.04 LTS precise	Fixed 3.5.0-46.70~precise1
	10.04 LTS lucid	Not in release
linux-lts-raring	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	13.04 raring	Not in release
	12.10 quantal	Not in release
	12.04 LTS precise	Fixed 3.8.0-36.52~precise1
	10.04 LTS lucid	Not in release
linux-lts-saucy	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	13.04 raring	Not in release
	12.10 quantal	Not in release
	12.04 LTS precise	Not affected
	10.04 LTS lucid	Not in release
linux-lts-trusty	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	12.04 LTS precise	Not affected
	10.04 LTS lucid	Not in release
linux-maguro	14.04 LTS trusty	Not in release
	13.10 saucy	Ignored
	12.10 quantal	Not in release
	12.04 LTS precise	Not in release
	10.04 LTS lucid	Not in release
linux-mako	14.04 LTS trusty	Ignored end of life, was needed
	13.10 saucy	Ignored
	12.10 quantal	Not in release
	12.04 LTS precise	Not in release
	10.04 LTS lucid	Not in release
linux-manta	14.04 LTS trusty	Ignored end of life, was needed
	13.10 saucy	Ignored
	12.10 quantal	Not in release
	12.04 LTS precise	Not in release
	10.04 LTS lucid	Not in release
linux-mvl-dove	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	13.04 raring	Not in release
	12.10 quantal	Not in release
	12.04 LTS precise	Not in release
	10.04 LTS lucid	Ignored end of life
linux-qcm-msm	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	13.04 raring	Not in release
	12.10 quantal	Ignored end of life
	12.04 LTS precise	Ignored end of life
	10.04 LTS lucid	Ignored end of life
linux-ti-omap4	14.04 LTS trusty	Not in release
	13.10 saucy	Fixed 3.5.0-238.54
	13.04 raring	Ignored end of life, was pending
	12.10 quantal	Fixed 3.5.0-238.54
	12.04 LTS precise	Fixed 3.2.0-1442.61
	10.04 LTS lucid	Not in release

Notes

jdstrand

attacker requires privileged access to the host hardware to exploit per kernel team, too intrusive to backport

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
linux	Introduced by 1da177e, fixed by 12d6e75 Introduced by 1da177e, fixed by e40f193

References

Related Ubuntu Security Notices (USN)

USN-2115-1
Linux kernel (OMAP4) vulnerabilities
18 February 2014

USN-2112-1
Linux kernel (Raring HWE) vulnerabilities
18 February 2014

USN-2067-1
Linux kernel (OMAP4) vulnerabilities
3 January 2014

USN-2114-1
Linux kernel vulnerabilities
18 February 2014

USN-2066-1
Linux kernel vulnerabilities
3 January 2014

USN-2111-1
Linux kernel (Quantal HWE) vulnerabilities
18 February 2014