CVE-2007-3732
Publication date 7 November 2019
Last updated 24 July 2024
Ubuntu priority
In Linux 2.6 before 2.6.23, the TRACE_IRQS_ON function in iret_exc calls a C function without ensuring that the segments are set properly. The kernel's %fs needs to be restored before the call in TRACE_IRQS_ON and before enabling interrupts, so that "current" references work. Without this, "current" used in the window between iret_exc and the middle of error_code where %fs is reset, would crash.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| linux | 16.04 LTS xenial |
Not affected
|
| 14.04 LTS trusty |
Not affected
|
|
| linux-armadaxp | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-flo | 16.04 LTS xenial |
Not affected
|
| 14.04 LTS trusty | Not in release | |
| linux-goldfish | 16.04 LTS xenial |
Not affected
|
| 14.04 LTS trusty | Not in release | |
| linux-grouper | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-linaro-omap | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-linaro-shared | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-linaro-vexpress | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-lts-quantal | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-lts-raring | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-lts-saucy | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-lts-trusty | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-lts-utopic | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-lts-vivid | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-lts-wily | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-lts-xenial | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty |
Not affected
|
|
| linux-maguro | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-mako | 16.04 LTS xenial |
Not affected
|
| 14.04 LTS trusty | Not in release | |
| linux-manta | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-qcm-msm | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
| linux-raspi2 | 16.04 LTS xenial |
Not affected
|
| 14.04 LTS trusty | Not in release | |
| linux-ti-omap4 | 16.04 LTS xenial | Not in release |
| 14.04 LTS trusty | Not in release | |
Notes
jdstrand
android kernels (flo, goldfish, grouper, maguro, mako and manta) are not supported on the Ubuntu Touch 14.10 and earlier preview kernels linux-lts-saucy no longer receives official support linux-lts-quantal no longer receives official support
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score |
5.5 · Medium
|
| Attack vector | Local |
| Attack complexity | Low |
| Privileges required | Low |
| User interaction | None |
| Scope | Unchanged |
| Confidentiality | None |
| Integrity impact | None |
| Availability impact | High |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |