CVE-2014-1666 — XEN vulnerability

CWE-2647 documents6 sources

Severity

8.3HIGHNVD

EPSS

3.3%

top 12.85%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian XEN

Timeline

PublishedJan 26

Latest updateMay 14

Description

The do_physdev_op function in Xen 4.1.5, 4.1.6.1, 4.2.2 through 4.2.3, and 4.3.x does not properly restrict access to the (1) PHYSDEVOP_prepare_msix and (2) PHYSDEVOP_release_msix operations, which allows local PV guests to cause a denial of service (host or guest malfunction) or possibly gain privileges via unspecified vectors.

CVSS vector

AV:A/AC:L/C:C/I:C/A:CExploitability: 6.5 | Impact: 10.0

Affected Packages3 packages

▶debiandebian/xen< xen 4.4.0-1 (bookworm)

▶Debianxen/xen< 4.4.0-1+3

▶NVDxen/xen6 versions+5

Patches

Patch: xenbits.xen.org ↗Patch: xenbits.xen.org ↗

🔴Vulnerability Details

GHSA

GHSA-3fc4-5q4x-p7j8: The do_physdev_op function in Xen 4↗2022-05-14

▶

OSV

CVE-2014-1666: The do_physdev_op function in Xen 4↗2014-01-26

▶

📋Vendor Advisories

Red Hat

xen: PHYSDEVOP_{prepare,release}_msix exposed to unprivileged guests↗2014-01-24

▶

Debian

CVE-2014-1666: xen - The do_physdev_op function in Xen 4.1.5, 4.1.6.1, 4.2.2 through 4.2.3, and 4.3.x...↗2014

▶

💬Community

Bugzilla

CVE-2014-1666 xen: PHYSDEVOP_{prepare,release}_msix exposed to unprivileged guests↗2014-01-27

▶

Bugzilla

CVE-2014-1666 xen: PHYSDEVOP_{prepare,release}_msix exposed to unprivileged guests [fedora-all]↗2014-01-27

▶