CVE-2014-6268

Name of the Vulnerable Software and Affected Versions Xen versions 4.4.x

Description The issue allows local guest users to cause a denial of service, resulting in a host crash. This can be achieved through vectors involving an uninitialized FIFO-based event channel control block, specifically when binding or moving an event to a different VCPU.

Recommendations For Xen version 4.4.x, consider restricting access to the evtchn fifo set pending function as a temporary workaround until a patch is available.