NVD

Id
30433  
Name
CVE-2014-1895  
Description
Off-by-one error in the flask_security_avc_cachestats function in xsm/flask/flask_op.c in Xen 4.2.x and 4.3.x, when the maximum number of physical CPUs are in use, allows local users to cause a denial of service (host crash) or obtain sensitive information from hypervisor memory by leveraging a FLASK_AVC_CACHESTAT hypercall, which triggers a buffer over-read.  
Reject
 
CVSS Version
2  
CVSS Score
5.8  
Severity
Medium  
CVSS Base Score
5.8  
CVSS Impact Subscore
7.8  
CVSS Exploit Subscore
4.4  
CVSS Vector
(AV:A/AC:M/Au:S/C:P/I:N/A:C)  
Pub Date
2017-01-19  
Published
2014-04-01  
Modified Date
2017-01-06  
Seq
2014-1895  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
161026 30433 CVE-2014-1895 SUSE-SU-2014:0373  View
161027 30433 CVE-2014-1895 GLSA-201407-03  View
161028 30433 CVE-2014-1895 [oss-security] 20140207 Re: Xen Security Advisory 84 - integer overflow in several XSM/Flask hypercalls  View
161029 30433 CVE-2014-1895 [oss-security] 20140210 Xen Security Advisory 85 (CVE-2014-1895) - Off-by-one error in FLASK_AVC_CACHESTAT hypercall  View
161030 30433 CVE-2014-1895 http://xenbits.xen.org/xsa/advisory-85.html  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
13013 JVNDB-2014-001888 Xen の xsm/flask/flask_op.c 内の flask_security_avc_cachestats 関数におけるサービス運用妨害 (DoS) の脆弱性 Xen の xsm/flask/flask_op.c 内の flask_security_avc_cachestats 関数には、一つずれエラー (Off-by-One error) により、物理 CPU の最大数が使用されている場合、サービス運用妨害 (ホストクラッシュ) 状態にされる、またはハイパーバイザのメモリから重要な情報を取得される脆弱性が存在します。 CVE-2014-1895 69182 CVE-2014-1895 30433 5.8 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-001888.html 2014-02-06 2014-04-03 View