CVE-2014-8867
Published: 1 December 2014
The acceleration support for the "REP MOVS" instruction in Xen 4.4.x, 3.2.x, and earlier lacks properly bounds checking for memory mapped I/O (MMIO) emulated in the hypervisor, which allows local HVM guests to cause a denial of service (host crash) via unspecified vectors.
Priority
Medium
Status
| Package | Release | Status |
|---|---|---|
|
xen Launchpad, Ubuntu, Debian |
lucid |
Does not exist
|
| precise |
Released
(4.1.6.1-0ubuntu0.12.04.4)
|
|
| trusty |
Does not exist
(trusty was released [4.4.1-0ubuntu0.14.04.2])
|
|
| upstream |
Needed
|
|
| utopic |
Released
(4.4.1-0ubuntu0.14.10.2)
|
|
| vivid |
Released
(4.4.1-3ubuntu2)
|
|
| wily |
Released
(4.4.1-3ubuntu2)
|
|
|
Patches: upstream: https://marc.info/?l=oss-security&m=141709017105148&q=p3 (4.2) upstream: https://marc.info/?l=oss-security&m=141709017105148&q=p4 (4.3+) |
||
| Binaries built from this source package are in Universe and so are supported by the community. | ||
|
xen-3.3 Launchpad, Ubuntu, Debian |
lucid |
Ignored
(reached end-of-life)
|
| precise |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Ignored
(reached end-of-life)
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| Binaries built from this source package are in Universe and so are supported by the community. | ||