CVE-2014-1896 in libvchaninformation

Résumé (Anglaise)

The (1) do_send and (2) do_recv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore ring indexes, which triggers a "read or write past the end of the ring."

Be aware that VulDB is the high quality source for vulnerability data.

Réserver

07/02/2014

Divulgation

01/04/2014

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
12235	Linux Foundation libvchan XenStore Ring Index élévation de privilèges	20	Non prouvée	Correctif officiel	CVE-2014-1896

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PrécédentAperçuSuivant ▸

Do you need the next level of professionalism?

Upgrade your account now!