Lucene search

PRIOn knowledge basePRION:CVE-2014-7156

HistoryOct 02, 2014 - 2:55 p.m.

Design/Logic Flaw

2014-10-0214:55:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

Low

3.3 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

26.2%

JSON

The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 3.3.x through 4.4.x does not check the supervisor mode permissions for instructions that generate software interrupts, which allows local HVM guest users to cause a denial of service (guest crash) via unspecified vectors.

CPENameOperatorVersion
xeneq4.1.5
xeneq4.2.2
xeneq4.2.3
xeneq4.3.0
xeneq3.3.2
xeneq4.1.2
xeneq4.4.0 rc1
xeneq4.1.1
xeneq4.2.0
xeneq4.1.0

Name	Operator	Version
xen	eq	4.1.5
xen	eq	4.2.2
xen	eq	4.2.3
xen	eq	4.3.0
xen	eq	3.3.2
xen	eq	4.1.2
xen	eq	4.4.0 rc1
xen	eq	4.1.1
xen	eq	4.2.0
xen	eq	4.1.0

Rows per page:

1-10 of 191

References

lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html

lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html

secunia.com/advisories/61500

secunia.com/advisories/61858

secunia.com/advisories/61890

security.gentoo.org/glsa/glsa-201412-42.xml

support.citrix.com/article/CTX200218

www.debian.org/security/2014/dsa-3041

www.securityfocus.com/bid/70062

www.securitytracker.com/id/1030889

xenbits.xen.org/xsa/advisory-106.html

lists.fedoraproject.org/pipermail/package-announce/2014-October/140418.html

lists.fedoraproject.org/pipermail/package-announce/2014-October/140483.html

6.5 Medium

AI Score

Confidence

Low

3.3 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

26.2%

JSON

Related for PRION:CVE-2014-7156