CVE-2014-3967

The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x does not properly check the return value from the IRQ setup check, which allows local HVM guest administrators to cause a denial of service (NULL pointer dereference and crash) via unspecified vectors.

Published: Jun 5, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-3967
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.5
AV:A/AC:L/Au:S/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
xen / xen	4.2.2	4.2.2.x
xen / xen	4.2.3	4.2.3.x
xen / xen	4.2.0	4.2.0.x
xen / xen	4.2.1	4.2.1.x
xen / xen	4.4.0-rc1	4.4.0-rc1.x
xen / xen	4.4.0	4.4.0.x
opensuse / opensuse	12.3	12.3.x
opensuse / opensuse	13.1	13.1.x
xen / xen	4.3.0	4.3.0.x
xen / xen	4.3.1	4.3.1.x

http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134710.html
http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134739.html
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html
http://www.openwall.com/lists/oss-security/2014/06/04/13
http://www.securityfocus.com/bid/67794
http://www.securitytracker.com/id/1030322
http://xenbits.xen.org/xsa/advisory-96.html
https://security.gentoo.org/glsa/201504-04

Vulnerability Database

290,278

CVE-2014-3967