Vulnerability Database
298,930
Total vulnerabilities in the database
CVE-2014-8867
The acceleration support for the "REP MOVS" instruction in Xen 4.4.x, 3.2.x, and earlier lacks properly bounds checking for memory mapped I/O (MMIO) emulated in the hypervisor, which allows local HVM guests to cause a denial of service (host crash) via unspecified vectors.
| Software | From | Fixed in |
|---|---|---|
| redhat / enterprise_linux | 5.0 | 5.0.x |
| redhat / enterprise_linux_desktop | 5.0 | 5.0.x |
| xen / xen | 3.2.1 | 3.2.1.x |
| xen / xen | 3.2.2 | 3.2.2.x |
| xen / xen | 3.2.3 | 3.2.3.x |
| xen / xen | - | 3.2.0.x |
| xen / xen | 4.4.1 | 4.4.1.x |
| xen / xen | 4.4.0 | 4.4.0.x |
| debian / debian_linux | 7.0 | 7.0.x |
| opensuse / opensuse | 13.1 | 13.1.x |
| opensuse / opensuse | 13.2 | 13.2.x |
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html
- http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html
- http://rhn.redhat.com/errata/RHSA-2015-0783.html
- http://secunia.com/advisories/59949
- http://secunia.com/advisories/62672
- http://support.citrix.com/article/CTX200288
- http://support.citrix.com/article/CTX201794
- http://www.debian.org/security/2015/dsa-3140
- http://www.securityfocus.com/bid/71331
- http://xenbits.xenproject.org/xsa/advisory-112.html
- https://security.gentoo.org/glsa/201504-04
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime