CVE-2014-2986

Name of the Vulnerable Software and Affected Versions Xen versions 4.4.x

Description The issue is related to the vgic distr mmio write function in the virtual guest interrupt controller (GIC) distributor. It allows local guest users to cause a denial of service, resulting in a NULL pointer dereference and host crash, when running on an ARM system.

Recommendations For Xen version 4.4.x, consider disabling the vgic distr mmio write function as a temporary workaround until a patch is available. Restrict access to the virtual guest interrupt controller to minimize the risk of exploitation.