CVE-2013-0311

2013-02-2100:00:00

ubuntu.com

6.5 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:H/Au:S/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

25.9%

JSON

The translate_desc function in drivers/vhost/vhost.c in the Linux kernel
before 3.7 does not properly handle cross-region descriptors, which allows
guest OS users to obtain host OS privileges by leveraging KVM guest OS
privileges.

Bugs

Notes

Author	Note
apw	this is a bug in the vhost driver which was introduced in this commit: 3a4d5c94e959359ece6d6b55045c3f046677f55c

OSVersionArchitecturePackageVersionFilename
ubuntu11.10noarchlinux< 3.0.0-32.50UNKNOWN
ubuntu12.04noarchlinux< 3.2.0-39.62UNKNOWN
ubuntu12.10noarchlinux< 3.5.0-26.42UNKNOWN
ubuntu12.04noarchlinux-armadaxp< 3.2.0-1615.23UNKNOWN
ubuntu12.10noarchlinux-armadaxp< 3.5.0-1611.17UNKNOWN
ubuntu10.04noarchlinux-lts-backport-oneiric< 3.0.0-32.50~lucid1UNKNOWN
ubuntu12.04noarchlinux-lts-quantal< 3.5.0-26.42~precise1UNKNOWN
ubuntu11.10noarchlinux-ti-omap4< 3.0.0-1222.36UNKNOWN
ubuntu12.04noarchlinux-ti-omap4< 3.2.0-1427.36UNKNOWN
ubuntu12.10noarchlinux-ti-omap4< 3.5.0-221.31UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	11.10	noarch	linux	< 3.0.0-32.50	UNKNOWN
ubuntu	12.04	noarch	linux	< 3.2.0-39.62	UNKNOWN
ubuntu	12.10	noarch	linux	< 3.5.0-26.42	UNKNOWN
ubuntu	12.04	noarch	linux-armadaxp	< 3.2.0-1615.23	UNKNOWN
ubuntu	12.10	noarch	linux-armadaxp	< 3.5.0-1611.17	UNKNOWN
ubuntu	10.04	noarch	linux-lts-backport-oneiric	< 3.0.0-32.50~lucid1	UNKNOWN
ubuntu	12.04	noarch	linux-lts-quantal	< 3.5.0-26.42~precise1	UNKNOWN
ubuntu	11.10	noarch	linux-ti-omap4	< 3.0.0-1222.36	UNKNOWN
ubuntu	12.04	noarch	linux-ti-omap4	< 3.2.0-1427.36	UNKNOWN
ubuntu	12.10	noarch	linux-ti-omap4	< 3.5.0-221.31	UNKNOWN