CVE-2014-7155 — Missing Authorization in XEN

CWE-264 CWE-862 — Missing Authorization7 documents6 sources

Severity

5.8MEDIUMNVD

EPSS

1.0%

top 22.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian XEN Debian Linux +2 more

Timeline

PublishedOct 2

Latest updateMay 14

Description

The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 4.4.x and earlier does not properly check supervisor mode permissions, which allows local HVM users to cause a denial of service (guest crash) or gain guest kernel mode privileges via vectors involving an (1) HLT, (2) LGDT, (3) LIDT, or (4) LMSW instruction.

CVSS vector

AV:A/AC:L/C:P/I:P/A:PExploitability: 6.5 | Impact: 6.4

Affected Packages4 packages

▶debiandebian/xen< xen 4.4.1-3 (bookworm)

▶Debianxen/xen< 4.4.1-3+3

▶NVDxen/xen4.4.0+36

▶NVDopensuse/opensuse12.3, 13.1+1

Also affects: Debian Linux 7.0, Fedora 19, 20

Patches

Patch: xenbits.xen.org ↗Patch: xenbits.xen.org ↗

🔴Vulnerability Details

GHSA

GHSA-7w7p-f566-6r85: The x86_emulate function in arch/x86/x86_emulate/x86_emulate↗2022-05-14

▶

OSV

CVE-2014-7155: The x86_emulate function in arch/x86/x86_emulate/x86_emulate↗2014-10-02

▶

📋Vendor Advisories

Red Hat

kernel: xen: Missing privilege level checks in x86 HLT, LGDT, LIDT, and LMSW emulation (XSA-105)↗2014-09-23

▶

Debian

CVE-2014-7155: xen - The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 4.4.x and ...↗2014

▶

💬Community

Bugzilla

CVE-2014-7155 kernel: xen: Missing privilege level checks in x86 HLT, LGDT, LIDT, and LMSW emulation (xsa105) [fedora-all]↗2014-09-23

▶

Bugzilla

CVE-2014-7155 kernel: xen: Missing privilege level checks in x86 HLT, LGDT, LIDT, and LMSW emulation (XSA-105)↗2014-09-10

▶