Ubuntu
linux package

linux: VM86 should be disabled

Bug #1473447 reported by Tim Gardner
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux (Ubuntu)
Fix Released
Medium
Unassigned

Bug Description

Upstream is concerned about possible security vulnerabilities in VM86: http://thread.gmane.org/gmane.linux.kernel/1991020

There are possible side effects to disabling VM86, e.g., (http://codesearch.debian.net/results/sys%2Fvm86.h) and (http://codesearch.debian.net/results/asm%2Fvm86.h). Applications including asm/vm86.h directly may not have an emulation fallback mode and may therefore fail to run or build.

VM86 is also a dependency for some older 32 bit X drivers.

It seems the choice is to regress or orphan some 32 bit functionality, or leave all 32 bit platform open to possible VM86 vulnerabilities.

CVE References

Revision history for this message
Brad Figg (brad-figg) wrote : Missing required logs.

This bug is missing log files that will aid in diagnosing the problem. From a terminal window please run:

apport-collect 1473447

and then change the status of the bug to 'Confirmed'.

If, due to the nature of the issue you have encountered, you are unable to run this command, please add a comment stating that fact and change the bug status to 'Confirmed'.

This change has been made by an automated script, maintained by the Ubuntu Kernel Team.

Changed in linux (Ubuntu):
status: New → Incomplete
Joseph Salisbury (jsalisbury)
Changed in linux (Ubuntu):
importance: Undecided → Medium
status: Incomplete → Triaged
tags: added: bot-stop-nagging kernel-da-key
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package linux - 4.1.0-1.1

---------------
linux (4.1.0-1.1) wily; urgency=low

  [ Andy Whitcroft ]

  * SAUCE: overlay: add backwards compatible overlayfs format support V3
    - LP: #1395877, #1410480
  * SAUCE: overlayfs: when copying up and reading directories ensure
    mounter had permissions V2
    - CVE-2015-1328
  * [Packaging] fix up Vcs-Git: to point to launchpad
  * [Config] correct linux-initramfs-tool virtual linkage
    - LP: #1474810

  [ Chris J Arges ]

  * [Config] Add dm-service-time to multipath-modules
    - LP: #1469240
  * [Config] Add MTD_POWERNV_FLASH and OPAL_PRD
    - LP: #1464560

  [ Jay Vosburgh ]

  * SAUCE: fan: Proof of concept implementation (v2)
    - LP: #1439706
  * SAUCE: fan: tunnel multiple mapping mode (v3)
    - LP: #1470091

  [ Leann Ogasawara ]

  * Revert "SAUCE: ext4: disable ext4_punch_hole for indirect filesystems"
  * Revert "SAUCE: intel_pstate: inform user that thermald is worth
    considering"
  * Revert "SAUCE: Work around broken ACPI backlight on Dell Inspiron 5537"
  * Revert "SAUCE: dm-crypt: never use write same"
  * Release Tracking Bug
    - LP: #1476333

  [ Tim Gardner ]

  * Rebase to v4.1
    - LP: #1443371
  * [Config] Enable Apparmor
  * [Config] CONFIG_OVERLAY_FS_V1=y
  * [Config] DEFAULT_IOSCHED="deadline" for ppc64el
    - LP: #1469829
  * [Config] CONFIG_VM86=n
    - LP: #1473447
  * [Config] ACORN_PARTITION=n
    - LP: #1453117

  [ Timo Aaltonen ]

  * [Config] Disable CONFIG_DRM_I915_PRELIMINARY_HW_SUPPORT
    - LP: #1473319

  [ Upstream Kernel Changes ]

  * efi: efivar_create_sysfs_entry() should return negative error codes
  * efi: Add esrt support
  * x86, doc: Remove cmdline_size from list of fields to be filled in for
    EFI handover
  * efi/esrt: Fix some compiler warnings
  * efi: dmi: List SMBIOS3 table before SMBIOS table
  * efi: Add 'systab' information to Documentation/ABI
  * ALSA: hda - restore the MIC FIXUP for some Dell machines
    - LP: #1473560
  * mtd: powernv: Add powernv flash MTD abstraction driver
    - LP: #1464560
  * powerpc/powernv: Expose OPAL APIs required by PRD interface
    - LP: #1464560
  * powerpc/powernv: Add opal-prd channel
    - LP: #1464560
  * powerpc/powernv: fix construction of opal PRD messages
    - LP: #1464560
  * powerpc/include: Add opal-prd to installed uapi headers
    - LP: #1464560
  * powerpc/powernv: Fix vma page prot flags in opal-prd driver
    - LP: #1464560

 -- Leann Ogasawara <email address hidden> Mon, 20 Jul 2015 10:16:06 -0700

Changed in linux (Ubuntu):
status: Triaged → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.