[kernel-sec-discuss] r3524 - retired
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Wed Oct 29 21:26:34 UTC 2014
Author: jmm
Date: 2014-10-29 21:26:34 +0000 (Wed, 29 Oct 2014)
New Revision: 3524
Added:
retired/CVE-2014-8480
retired/CVE-2014-8481
Log:
new kvm issues, straight to retired
Added: retired/CVE-2014-8480
===================================================================
--- retired/CVE-2014-8480 (rev 0)
+++ retired/CVE-2014-8480 2014-10-29 21:26:34 UTC (rev 3524)
@@ -0,0 +1,11 @@
+Description: NULL deref in kvm: certain instructions (such as clflush) were missing proper flags in the decoder tables which to lead to uninitialized ctxt->memopp
+References:
+Notes:
+Bugs:
+upstream: released (3.18-rc1) [13e457e0eebf0a0c82c38ceb890d93eb826d62a6, 3f6f1480d86bf9fc16c160d803ab1d006e3058d5]
+2.6.32-upstream-stable: N/A "Introduced in 3.17"
+sid: N/A "Introduced in 3.17"
+3.2-wheezy-security: N/A "Introduced in 3.17"
+2.6.32-squeeze-security: N/A "Introduced in 3.17"
+3.16-upstream-stable: N/A "Introduced in 3.17"
+3.2-upstream-stable: N/A "Introduced in 3.17"
Added: retired/CVE-2014-8481
===================================================================
--- retired/CVE-2014-8481 (rev 0)
+++ retired/CVE-2014-8481 2014-10-29 21:26:34 UTC (rev 3524)
@@ -0,0 +1,11 @@
+Description: NULL deref in kvm: certain error cases (such as failure to fetch whole instruction) also lead to unitialized ctxt->memopp]
+References:
+Notes:
+Bugs:
+upstream: released (3.18-rc1) [a430c9166312e1aa3d80bce32374233bdbfeba32]
+2.6.32-upstream-stable: N/A "Introduced in 3.17"
+sid: N/A "Introduced in 3.17"
+3.2-wheezy-security: N/A "Introduced in 3.17"
+2.6.32-squeeze-security: N/A "Introduced in 3.17"
+3.16-upstream-stable: N/A "Introduced in 3.17"
+3.2-upstream-stable: N/A "Introduced in 3.17"
More information about the kernel-sec-discuss
mailing list