CVE-2014-1642

Name of the Vulnerable Software and Affected Versions Xen versions 4.2.x through 4.3.x

Description The issue is related to the IRQ setup in Xen when using device passthrough and configured to support a large number of CPUs. It allows local guest administrators to cause a denial of service, resulting in memory corruption and hypervisor crash, and possibly execute arbitrary code. This can occur due to vectors related to an out-of-memory error that triggers a use-after-free or double free.

Recommendations For Xen versions 4.2.x through 4.3.x, at the moment, there is no information about a newer version that contains a fix for this vulnerability.