← voltar
CVE-2014-7155

CVE-2014-7155

EPSS 1.0%
The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 4.4.x and earlier does not properly check supervisor mode permissions, which allows local HVM users to cause a denial of service (guest crash) or gain guest kernel mode privileges via vectors involving an (1) HLT, (2) LGDT, (3) LIDT, or (4) LMSW instruction.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/140418.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2014-October/140483.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.htmlhttp://secunia.com/advisories/61858http://secunia.com/advisories/61890http://security.gentoo.org/glsa/glsa-201412-42.xmlhttp://support.citrix.com/article/CTX200218http://www.debian.org/security/2014/dsa-3041http://www.securityfocus.com/bid/70057http://www.securitytracker.com/id/1030888http://xenbits.xen.org/xsa/advisory-105.html