Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-9030HistoryNov 24, 2014 - 3:59 p.m.
CVE-2014-9030
2014-11-2415:59:00
Debian Security Bug Tracker
security-tracker.debian.org
9
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.003 Low
EPSS
Percentile
68.9%
The do_mmu_update function in arch/x86/mm.c in Xen 3.2.x through 4.4.x does not properly manage page references, which allows remote domains to cause a denial of service by leveraging control over an HVM guest and a crafted MMU_MACHPHYS_UPDATE.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | xen | < 4.4.1-4 | xen_4.4.1-4_all.deb |
| Debian | 11 | all | xen | < 4.4.1-4 | xen_4.4.1-4_all.deb |
| Debian | 10 | all | xen | < 4.4.1-4 | xen_4.4.1-4_all.deb |
| Debian | 999 | all | xen | < 4.4.1-4 | xen_4.4.1-4_all.deb |
| Debian | 13 | all | xen | < 4.4.1-4 | xen_4.4.1-4_all.deb |
Related
prion
prion
Code injection
2014-11-24 15:59:00
securityvulns
securityvulns
Xen DoS
2015-02-02 00:00:00
[SECURITY] [DSA 3140-1] xen security update
2015-02-02 00:00:00
ubuntucve
ubuntucve
CVE-2014-9030
2014-11-24 00:00:00
xen
xen
Guest effectable page reference leak in MMU_MACHPHYS_UPDATE handling
2014-11-20 16:26:00
cve
cve
CVE-2014-9030
2014-11-24 15:59:00
nessus
nessus
Fedora 21 : xen-4.4.1-9.fc21 (2014-15951)
2014-12-15 00:00:00
Fedora 20 : xen-4.3.3-5.fc20 (2014-15521)
2014-12-02 00:00:00
Fedora 19 : xen-4.2.5-5.fc19 (2014-15503)
2014-12-02 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:1700-1)
2021-06-09 00:00:00
Debian: Security Advisory (DSA-3140-1)
2015-01-26 00:00:00
Debian Security Advisory DSA 3140-1 (xen - security update)
2015-01-27 00:00:00
debian
debian
[SECURITY] [DSA 3140-1] xen security update
2015-01-27 10:53:46
osv
osv
xen - security update
2015-01-27 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: xen-4.4.1-9.fc21
2014-12-12 04:01:42
[SECURITY] Fedora 21 Update: xen-4.4.1-12.fc21
2015-01-17 05:35:38
[SECURITY] Fedora 21 Update: xen-4.4.1-16.fc21
2015-03-23 07:10:24
suse
suse
Security update for xen (important)
2015-01-09 12:04:44
Security update for xen (important)
2015-02-11 15:05:20
Security update for xen (important)
2015-02-06 11:05:09
gentoo
gentoo
Xen: Multiple vulnerabilities
2015-04-11 00:00:00
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.003 Low
EPSS
Percentile
68.9%
Related for DEBIANCVE:CVE-2014-9030