All errata/sisyphus/ALT-PU-2014-1545-1
ALT-PU-2014-1545-1

Package update xen in branch sisyphus

Version4.4.0-alt6
Task#118832
Published2014-04-26
Max severityMEDIUM
Severity:

Closed issues (2)

CVE-2014-2915
MEDIUM5.5

Xen 4.4.x, when running on ARM systems, does not properly restrict access to hardware features, which allows local guest users to cause a denial of service (host or guest crash) via unspecified vectors, related to (1) cache control, (2) coprocessors, (3) debug registers, and (4) other unspecified registers.

Published: 2014-04-24Modified: 2025-04-12
CVSS 2.0MEDIUM 5.5
CVSS:2.0/AV:A/AC:L/Au:S/C:N/I:N/A:C
References
CVE-2014-2986
MEDIUM5.5

The vgic_distr_mmio_write function in the virtual guest interrupt controller (GIC) distributor (arch/arm/vgic.c) in Xen 4.4.x, when running on an ARM system, allows local guest users to cause a denial of service (NULL pointer dereference and host crash) via unspecified vectors.

Published: 2014-04-28Modified: 2025-04-12
CVSS 2.0MEDIUM 5.5
CVSS:2.0/AV:A/AC:L/Au:S/C:N/I:N/A:C
References