The Intel VT-d Interrupt Remapping engine in Xen 3.3.x through 4.3.x allows local guests to cause a denial of service (kernel panic) via a malformed Message Signaled Interrupt (MSI) from a PCI device that is bus mastering capable that triggers a System Error Reporting (SERR) Non-Maskable Interrupt (NMI).
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Opensuse | Opensuse | 13.1 (including) | 13.1 (including) |
| Opensuse | Opensuse | 13.2 (including) | 13.2 (including) |
| Xen | Ubuntu | devel | * |
| Xen | Ubuntu | precise | * |
| Xen | Ubuntu | quantal | * |
| Xen | Ubuntu | raring | * |
| Xen | Ubuntu | saucy | * |
| Xen | Ubuntu | upstream | * |
| Xen-3.3 | Ubuntu | lucid | * |
| Xen-3.3 | Ubuntu | upstream | * |
References
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html
- http://osvdb.org/96438
- http://secunia.com/advisories/54341
- http://www.openwall.com/lists/oss-security/2013/08/20/8
- http://www.securityfocus.com/bid/61854
- http://www.securitytracker.com/id/1028931
- https://security.gentoo.org/glsa/201504-04
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html
- http://osvdb.org/96438
- http://secunia.com/advisories/54341
- http://www.openwall.com/lists/oss-security/2013/08/20/8
- http://www.securityfocus.com/bid/61854
- http://www.securitytracker.com/id/1028931
- https://security.gentoo.org/glsa/201504-04