11 matches found
SUSE CVE-2014-1896
The 1 dosend and 2 dorecv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore ring indexes, which triggers a "read or write past the end of the ring."...
CVE-2014-1896
The 1 dosend and 2 dorecv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore ring indexes, which triggers a "read or write past the end of the ring."...
DEBIAN-CVE-2014-1896
The 1 dosend and 2 dorecv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore ring indexes, which triggers a "read or write past the end of the ring."...
CVE-2014-1896
The 1 dosend and 2 dorecv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore ring indexes, which triggers a "read or write past the end of the ring."...
CVE-2014-1896
The 1 dosend and 2 dorecv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore ring indexes, which triggers a "read or write past the end of the ring."...
Code injection
The 1 dosend and 2 dorecv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore ring indexes, which triggers a "read or write past the end of the ring."...
CVE-2014-1896
The 1 dosend and 2 dorecv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore ring indexes, which triggers a "read or write past the end of the ring."...
CVE-2014-1896
The 1 dosend and 2 dorecv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore ring indexes, which triggers a "read or write past the end of the ring."...
CVE-2014-1896
CVE-2014-1896 affects Xen’s libvchan, where the do_send and do_recv functions in io.c are vulnerable. A crafted xenstore ring index can trigger a read or write past the end of the ring, enabling a local guest to cause a denial of service and potentially gain privileges. Affected products/versions...
Fedora 19 : xen-4.2.3-15.fc19 (2014-2188)
three security fixes: integer overflow in several XSM/Flask hypercalls XSA-84 Off-by-one error in FLASKAVCCACHESTAT hypercall XSA-85 libvchan failure handling malicious ring indexes XSA-86 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...
libvchan failure handling malicious ring indexes
ISSUE DESCRIPTION libvchan a library for inter-domain communication does not correctly handle unusual or malicious contents in the xenstore ring. A malicious guest can exploit this to cause a libvchan-using facility to read or write past the end of the ring. IMPACT libvchan-using facilities are...