1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
|
Candidate: CVE-2014-2599
PublicDate: 2014-03-28
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2599
http://xenbits.xen.org/xsa/advisory-89.html
http://www.securitytracker.com/id/1029956
http://www.openwall.com/lists/oss-security/2014/03/25/2
http://www.openwall.com/lists/oss-security/2014/03/25/1
Description:
The HVMOP_set_mem_access HVM control operations in Xen 4.1.x for 32-bit and
4.1.x through 4.4.x for 64-bit allow local guest administrators to cause a
denial of service (CPU consumption) by leveraging access to certain service
domains for HVM guests and a large input.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: Jan Beulich
Assigned-to:
Patches_xen-3.3:
Tags_xen-3.3: universe-binary
upstream_xen-3.3: ignored (reached end-of-life)
lucid_xen-3.3: not-affected
precise_xen-3.3: DNE
quantal_xen-3.3: DNE
saucy_xen-3.3: DNE
trusty_xen-3.3: DNE
devel_xen-3.3: DNE
Patches_xen:
Tags_xen: universe-binary
upstream_xen: needs-triage
lucid_xen: DNE
precise_xen: released (4.1.6.1-0ubuntu0.12.04.2)
quantal_xen: ignored (reached end-of-life)
saucy_xen: released (4.3.0-1ubuntu1.4)
trusty_xen: released (4.4.0-0ubuntu5.1)
devel_xen: released (4.4.0-0ubuntu6)
|