Upstream information

CVE-2014-2915 at MITRE

Description

Xen 4.4.x, when running on ARM systems, does not properly restrict access to hardware features, which allows local guest users to cause a denial of service (host or guest crash) via unspecified vectors, related to (1) cache control, (2) coprocessors, (3) debug registers, and (4) other unspecified registers.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having moderate severity.

CVSS v2 Scores
  National Vulnerability Database
Base Score 5.5
Vector AV:A/AC:L/Au:S/C:N/I:N/A:C
Access Vector Adjacent Network
Access Complexity Low
Authentication Single
Confidentiality Impact None
Integrity Impact None
Availability Impact Complete
SUSE Bugzilla entry: 874650 [RESOLVED / UPSTREAM]

No SUSE Security Announcements cross referenced.


SUSE Timeline for this CVE

CVE page created: Thu Apr 24 19:16:17 2014
CVE page last modified: Fri Oct 7 12:46:46 2022