CVE-2014-1896 in libvchan信息

摘要

由 VulDB • 2026-06-07

libvchan中io.c的(1) do_send和(2) do_recv函数在Xen 4.2.x、4.3.x以及4.4-RC系列中存在漏洞,本地访客可通过构造xenstore环索引导致拒绝服务或可能提升权限,从而触发“读取或写入超出环末尾”的问题。

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

来源

Interested in the pricing of exploits?

See the underground prices here!