Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2986

Overview

Vulnerability Score 5.5 5.5
CVE Id CVE-2014-2986
Last Modified 29 Apr 2014 09:38:02
Published 28 Apr 2014 10:09:08
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector ADJACENT_NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2014-2986

Summary

The vgic_distr_mmio_write function in the virtual guest interrupt controller (GIC) distributor (arch/arm/vgic.c) in Xen 4.4.x, when running on an ARM system, allows local guest users to cause a denial of service (NULL pointer dereference and host crash) via unspecified vectors.

Vulnerable Systems

Operating System

  • Xen 4.4.0


References

CONFIRM - http://xenbits.xen.org/xsa/advisory-94.html

SECTRACK - 1030146

BID - 67047

MLIST - [oss-security] 20140423 Xen Security Advisory 94 (CVE-2014-2986) - ARM hypervisor crash on guest interrupt controller access

MLIST - [oss-security] 20140423 Re: Xen Security Advisory 94 - ARM hypervisor crash on guest interrupt controller access

MLIST - [oss-security] 20140423 Xen Security Advisory 94 - ARM hypervisor crash on guest interrupt controller access


Last Updated: 27 May 2016 11:05:08