CVE-2014-6268

Publication date 12 January 2015

Last updated 24 July 2024


Ubuntu priority

The evtchn_fifo_set_pending function in Xen 4.4.x allows local guest users to cause a denial of service (host crash) via vectors involving an uninitialized FIFO-based event channel control block when (1) binding or (2) moving an event to a different VCPU.

Read the notes from the security team

Status

Package Ubuntu Release Status
xen 14.10 utopic
Fixed 4.4.0-0ubuntu8
14.04 LTS trusty
Fixed 4.4.0-0ubuntu5.2
12.04 LTS precise
Not affected
10.04 LTS lucid Not in release
xen-3.3 14.10 utopic Not in release
14.04 LTS trusty Not in release
12.04 LTS precise Not in release
10.04 LTS lucid
Not affected

Notes


mdeslaur

4.4+