PT-2014-7809 · Xen+1 · Xen+1

Andrew Cooper

Publicado

2014-10-02

Atualizado

2024-06-15

CVE-2014-7154

CVSS v2.0

6.1

Média

Vetor

AV:A/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Xen versions 4.0.0 through 4.4.x

Description A race condition exists in the HVMOP track dirty vram function, which does not properly ensure possession of the guarding lock for dirty video RAM tracking. This issue allows certain local guest domains to cause a denial of service via unspecified vectors.

Recommendations For Xen versions 4.0.0 through 4.4.x, consider applying a patch that fixes the race condition in the HVMOP track dirty vram function to prevent denial of service attacks.

Correção

DoS

Race Condition

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-362

Identificadores relacionados

CVE-2014-7154

DSA-3041-1

OPENSUSE-SU-2014_1279-1

OPENSUSE-SU-2014_1281-1

OPENSUSE-SU-2024:10196-1

SUSE-SU-2015:0940-1

Produtos afetados

Suse

Xen

PT-2014-7809 · Xen+1 · Xen+1

CVE-2014-7154

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 177