Xen 4.4.x, when running on an ARM system, does not properly check write permissions on virtual addresses, which allows local guest administrators to gain privileges via unspecified vectors.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Xen | Xen | 4.4.0 (including) | 4.4.0 (including) |
| Xen | Xen | 4.4.0-rc1 (including) | 4.4.0-rc1 (including) |
| Xen | Ubuntu | devel | * |
| Xen | Ubuntu | trusty | * |
| Xen | Ubuntu | utopic | * |
| Xen | Ubuntu | vivid | * |
| Xen-3.3 | Ubuntu | upstream | * |
References
- http://secunia.com/advisories/58975
- http://www.openwall.com/lists/oss-security/2014/06/04/14
- http://www.securityfocus.com/bid/67819
- http://www.securitytracker.com/id/1030333
- http://xenbits.xen.org/xsa/advisory-98.html
- http://secunia.com/advisories/58975
- http://www.openwall.com/lists/oss-security/2014/06/04/14
- http://www.securityfocus.com/bid/67819
- http://www.securitytracker.com/id/1030333
- http://xenbits.xen.org/xsa/advisory-98.html