Certain MMU virtualization operations in Xen 4.2.x through 4.4.x, when using shadow pagetables, are not preemptible, which allows local HVM guest to cause a denial of service (vcpu consumption) by invoking these operations, which process every page assigned to a guest, a different vulnerability than CVE-2014-5146.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Opensuse | Opensuse | 13.1 (including) | 13.1 (including) |
Opensuse | Opensuse | 13.2 (including) | 13.2 (including) |
Xen | Ubuntu | precise | * |
Xen | Ubuntu | upstream | * |
Xen | Ubuntu | utopic | * |
Xen-3.3 | Ubuntu | lucid | * |
Xen-3.3 | Ubuntu | upstream | * |