CVE-2014-4022 in Xeninformazioni

Riassunto

di MITRE

The alloc_domain_struct function in arch/arm/domain.c in Xen 4.4.x, when running on an ARM platform, does not properly initialize the structure containing the grant table pages for a domain, which allows local guest administrators to obtain sensitive information via the GNTTABOP_setup_table subhypercall.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Prenotare

11/06/2014

Divulgazione

09/07/2014

Moderazione

accettato

Voce

2

Collegare

mostrare

CPE

pronto

EPSS

0.00542

KEV

no

Attività

molto basso

Fonti

Do you want to use VulDB in your project?

Use the official API to access entries easily!