Back to search
CVE-2014-7155
Published: Oct 2, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 4.4.x and earlier does not properly check supervisor mode permissions, which allows local HVM users to cause a denial of service (guest crash) or gain guest kernel mode privileges via vectors involving an (1) HLT, (2) LGDT, (3) LIDT, or (4) LMSW instruction.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
openSUSE-SU-2014:1281
vendor-advisory
x_refsource_SUSE
FEDORA-2014-12000
vendor-advisory
x_refsource_FEDORA
openSUSE-SU-2014:1279
vendor-advisory
x_refsource_SUSE
http://xenbits.xen.org/xsa/advisory-105.html
x_refsource_CONFIRM
http://support.citrix.com/article/CTX200218
x_refsource_CONFIRM
1030888
vdb-entry
x_refsource_SECTRACK
FEDORA-2014-12036
vendor-advisory
x_refsource_FEDORA
DSA-3041
vendor-advisory
x_refsource_DEBIAN
61858
third-party-advisory
x_refsource_SECUNIA
61890
third-party-advisory
x_refsource_SECUNIA
GLSA-201412-42
vendor-advisory
x_refsource_GENTOO
70057
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now