Candidate: CVE-2014-7188
PublicDate: 2014-10-02 14:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7188
 http://xenbits.xen.org/xsa/advisory-108.html
Description:
 The hvm_msr_read_intercept function in arch/x86/hvm/hvm.c in Xen 4.1
 through 4.4.x uses an improper MSR range for x2APIC emulation, which allows
 local HVM guests to cause a denial of service (host crash) or read data
 from the hypervisor or other guests via unspecified vectors.
Ubuntu-Description:
Notes:
 mdeslaur> hypervisor packages are in universe. For
 mdeslaur> issues in the hypervisor, add appropriate
 mdeslaur> tags to each section, ex:
 mdeslaur> Tags_xen: universe-binary
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_xen-3.3:
Tags_xen-3.3: universe-binary
upstream_xen-3.3: ignored (reached end-of-life)
lucid_xen-3.3: ignored (reached end-of-life)
precise_xen-3.3: DNE
trusty_xen-3.3: DNE
trusty/esm_xen-3.3: DNE
utopic_xen-3.3: DNE
vivid_xen-3.3: DNE
devel_xen-3.3: DNE

Patches_xen:
Tags_xen: universe-binary
upstream_xen: needs-triage
lucid_xen: DNE
precise_xen: released (4.1.6.1-0ubuntu0.12.04.3)
trusty_xen: released (4.4.0-0ubuntu5.2)
trusty/esm_xen: DNE (trusty was released [4.4.0-0ubuntu5.2])
utopic_xen: released (4.4.0-0ubuntu8)
vivid_xen: released (4.4.1-3ubuntu1)
devel_xen: released (4.4.1-3ubuntu1)