CVE-2014-1896
Published: 1 April 2014
The (1) do_send and (2) do_recv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore ring indexes, which triggers a "read or write past the end of the ring."
Notes
Author | Note |
---|---|
mdeslaur | This is XSA-86 libvchan not packaged in Ubuntu. 4.2+ only |
Priority
Status
Package | Release | Status |
---|---|---|
xen Launchpad, Ubuntu, Debian |
precise |
Not vulnerable
|
quantal |
Not vulnerable
|
|
upstream |
Needs triage
|
|
lucid |
Does not exist
|
|
saucy |
Released
(4.3.0-1ubuntu1.3)
|
|
xen-3.3 Launchpad, Ubuntu, Debian |
precise |
Does not exist
|
quantal |
Does not exist
|
|
saucy |
Does not exist
|
|
upstream |
Ignored
(end of life)
|
|
lucid |
Not vulnerable
|