CVE Vulnerabilities

CVE-2014-6268

Published: Jan 12, 2015 | Modified: Sep 08, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.9 MEDIUM
AV:L/AC:L/Au:N/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu

The evtchn_fifo_set_pending function in Xen 4.4.x allows local guest users to cause a denial of service (host crash) via vectors involving an uninitialized FIFO-based event channel control block when (1) binding or (2) moving an event to a different VCPU.

Affected Software

Name Vendor Start Version End Version
Xen Xen 4.4.0 4.4.0
Xen Xen 4.4.1 4.4.1
Xen Xen 4.4.0 4.4.0

References