PT-2014-4348 · Xen · Xen
Matthew Daley
·
Published
2014-04-01
·
Updated
2017-01-07
·
CVE-2014-1893
CVSS v2.0
5.2
Medium
| Vector | AV:A/AC:M/Au:S/C:N/I:N/A:C |
Multiple integer overflows in the (1) FLASK GETBOOL and (2) FLASK SETBOOL suboperations in the flask hypercall in Xen 4.1.x, 3.3.x, 3.2.x, and earlier, when XSM is enabled, allow local users to cause a denial of service (processor fault) via unspecified vectors, a different vulnerability than CVE-2014-1891, CVE-2014-1892, and CVE-2014-1894.
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Xen