CVE-2014-7156 in Linux Foundation Xeninfo

Summary

The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 3.3.x through 4.4.x does not check the supervisor mode permissions for instructions that generate software interrupts, which allows local HVM guest users to cause a denial of service (guest crash) via unspecified vectors.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

09/24/2014

Disclosure

10/02/2014

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
71771Linux Foundation Xen x86_emulate access control264Not definedOfficial fixCVE-2014-7156
67681Linux Foundation Xen x86 Emulation access control264UnprovenOfficial fixCVE-2014-7156

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!