Lucene search

PRIOn knowledge basePRION:CVE-2015-4164

HistoryJun 15, 2015 - 3:59 p.m.

Code injection

2015-06-1515:59:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

24.6%

JSON

The compat_iret function in Xen 3.1 through 4.5 iterates the wrong way through a loop, which allows local 32-bit PV guest administrators to cause a denial of service (large loop and system hang) via a hypercall_iret call with EFLAGS.VM set.

CPENameOperatorVersion
xeneq3.2.0
xeneq4.1.5
xeneq3.2.1
xeneq4.2.2
xeneq4.2.3
xeneq3.4.0
xeneq4.3.0
xeneq4.0.4
xeneq4.0.2
xeneq3.3.2

Name	Operator	Version
xen	eq	3.2.0
xen	eq	4.1.5
xen	eq	3.2.1
xen	eq	4.2.2
xen	eq	4.2.3
xen	eq	3.4.0
xen	eq	4.3.0
xen	eq	4.0.4
xen	eq	4.0.2
xen	eq	3.3.2

Rows per page:

1-10 of 371

References

lists.opensuse.org/opensuse-security-announce/2015-06/msg00004.html

lists.opensuse.org/opensuse-security-announce/2015-06/msg00007.html

lists.opensuse.org/opensuse-security-announce/2015-06/msg00029.html

lists.opensuse.org/opensuse-security-announce/2015-06/msg00030.html

lists.opensuse.org/opensuse-security-announce/2015-07/msg00014.html

lists.opensuse.org/opensuse-security-announce/2015-09/msg00027.html

support.citrix.com/article/CTX201145

www.debian.org/security/2015/dsa-3286

www.securityfocus.com/bid/75149

www.securitytracker.com/id/1032569

xenbits.xen.org/xsa/advisory-136.html

security.gentoo.org/glsa/201604-03

6.5 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

24.6%

JSON

Related for PRION:CVE-2015-4164