CVE-2014-9030 in Linux Foundation Xeninfo

Summary

The do_mmu_update function in arch/x86/mm.c in Xen 3.2.x through 4.4.x does not properly manage page references, which allows remote domains to cause a denial of service by leveraging control over an HVM guest and a crafted MMU_MACHPHYS_UPDATE.

Reservation

11/20/2014

Disclosure

11/24/2014

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
68298	Linux Foundation Xen MMU_MACHPHYS_UPDATE Processing input validation	20	Not defined	Official fix	CVE-2014-9030
68255	Linux Foundation Xen denial of service	404	Unproven	Official fix	CVE-2014-9030

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Do you need the next level of professionalism?

Upgrade your account now!