CVE-2014-2986

Publication date 28 April 2014

Last updated 24 July 2024

Ubuntu priority

The vgic_distr_mmio_write function in the virtual guest interrupt controller (GIC) distributor (arch/arm/vgic.c) in Xen 4.4.x, when running on an ARM system, allows local guest users to cause a denial of service (NULL pointer dereference and host crash) via unspecified vectors.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
xen	14.04 LTS trusty	Fixed 4.4.0-0ubuntu5.1
	13.10 saucy	Not affected
	12.10 quantal	Not affected
	12.04 LTS precise	Not affected
	10.04 LTS lucid	Not in release
xen-3.3	14.04 LTS trusty	Not in release
	13.10 saucy	Not in release
	12.10 quantal	Not in release
	12.04 LTS precise	Not in release
	10.04 LTS lucid	Not affected

Notes

mdeslaur

32- and 64-bit ARM systems only

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
xen	Upstream: http://lists.xen.org/archives/html/xen-announce/2014-04/binnWOnFiFdsy.bin

CVE-2014-2986

Status

Notes

mdeslaur

Patch details

References

Other references