Zurück zur CVE-Übersicht
CVE-2014-8867
MEDIUM(4.9)AV:L/AC:L/Au:N/C:N/I:N/A:C
Risk Signal Score12/100 — NIEDRIG
- CVSS 4.9 — Mittel
EPSS-Score
0%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
4.9
Technische Schwere
Beschreibung
The acceleration support for the "REP MOVS" instruction in Xen 4.4.x, 3.2.x, and earlier lacks properly bounds checking for memory mapped I/O (MMIO) emulated in the hypervisor, which allows local HVM guests to cause a denial of service (host crash) via unspecified vectors.
Referenzen
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html
- http://rhn.redhat.com/errata/RHSA-2015-0783.html
- http://secunia.com/advisories/59949
- http://secunia.com/advisories/62672
- http://support.citrix.com/article/CTX200288
- http://support.citrix.com/article/CTX201794
- http://www.debian.org/security/2015/dsa-3140
- http://www.securityfocus.com/bid/71331