ubuntu · CVE-2007-3732

Quick triage

Priority: medium Published: 2019-11-07 22:15:00 UTC Updated: 2025-08-25 19:29:21 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2007-3732 medium priority: Ubuntu including 22 source packages (linux, linux-armadaxp, …), 110 status rows across 5 suites (precise, trusty, upstream, wily, xenial): DNE 67, released 22, not-affected 14, ignored 7.

Description:

In Linux 2.6 before 2.6.23, the TRACE_IRQS_ON function in iret_exc calls a C function without ensuring that the segments are set properly. The kernel's %fs needs to be restored before the call in TRACE_IRQS_ON and before enabling interrupts, so that "current" references work. Without this, "current" used in the window between iret_exc and the middle of error_code where %fs is reset, would crash.

cvelogic Threat Intelligence