Lucene search

K

MitreCVELIST:CVE-2014-3967

HistoryJun 05, 2014 - 8:00 p.m.

CVE-2014-3967

2014-06-0520:00:00

mitre

www.cve.org

5.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.7%

The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x does not properly check the return value from the IRQ setup check, which allows local HVM guest administrators to cause a denial of service (NULL pointer dereference and crash) via unspecified vectors.

References

lists.fedoraproject.org/pipermail/package-announce/2014-June/134710.html

lists.fedoraproject.org/pipermail/package-announce/2014-June/134739.html

lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html

lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html

www.openwall.com/lists/oss-security/2014/06/04/13

www.securityfocus.com/bid/67794

www.securitytracker.com/id/1030322

xenbits.xen.org/xsa/advisory-96.html

security.gentoo.org/glsa/201504-04

5.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.7%

Related for CVELIST:CVE-2014-3967

cve1 ubuntucve1 nvd1 prion1 debiancve1 xen1 securityvulns2 nessus6 suse2 openvas22 fedora18 gentoo1