CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
Percentile
69.8%
This kernel update is based on upstream -longterm 3.14.24 and fixes the following security issues: The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non- canonical address to a model-specific register, which allows guest OS users to cause a denial of service (host OS crash) by leveraging guest OS privileges, related to the wrmsr_interception function in arch/x86/kvm/svm.c and the handle_wrmsr function in arch/x86/kvm/vmx.c (CVE-2014-3610). Race condition in the __kvm_migrate_pit_timer function in arch/x86/kvm/i8254.c in the KVM subsystem in the Linux kernel through 3.17.2 allows guest OS users to cause a denial of service (host OS crash) by leveraging incorrect PIT emulation (CVE-2014-3611). arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel through 3.17.2 does not have an exit handler for the INVVPID instruction, which allows guest OS users to cause a denial of service (guest OS crash) via a crafted application (CVE-2014-3646). arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel through 3.17.2 does not properly perform RIP changes, which allows guest OS users to cause a denial of service (guest OS crash) via a crafted application (CVE-2014-3647). Other changes: Revert “drivers/net: Disable UFO through virtio” as it breaks VM migration add ahci support for Intel Sunrise Point / Skylake make INTEL_MEI modular (mga#14469) For other upstream changes, read the referenced changelog.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 4 | noarch | kernel | < 3.14.24-1 | kernel-3.14.24-1.mga4 |
Mageia | 4 | noarch | kernel-userspace-headers | < 3.14.24-1 | kernel-userspace-headers-3.14.24-1.mga4 |
Mageia | 4 | noarch | kmod-vboxadditions | < 4.3.18-4 | kmod-vboxadditions-4.3.18-4.mga4 |
Mageia | 4 | noarch | kmod-virtualbox | < 4.3.18-4 | kmod-virtualbox-4.3.18-4.mga4 |
Mageia | 4 | noarch | kmod-xtables-addons | < 2.5-7 | kmod-xtables-addons-2.5-7.mga4 |
Mageia | 4 | noarch | kmod-broadcom-wl | < 6.30.223.141-42 | kmod-broadcom-wl-6.30.223.141-42.mga4.nonfree |
Mageia | 4 | noarch | kmod-fglrx | < 14.010.1006-12 | kmod-fglrx-14.010.1006-12.mga4.nonfree |
Mageia | 4 | noarch | kmod-nvidia173 | < 173.14.39-27 | kmod-nvidia173-173.14.39-27.mga4.nonfree |
Mageia | 4 | noarch | kmod-nvidia304 | < 304.121-7 | kmod-nvidia304-304.121-7.mga4.nonfree |
Mageia | 4 | noarch | kmod-nvidia-current | < 331.79-12 | kmod-nvidia-current-331.79-12.mga4.nonfree |
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
Percentile
69.8%