Wind River Support Network

HomeDefectsOVP-2090
Fixed

OVP-2090 : Security Advisory - linux - CVE-2014-3601

Created: Sep 14, 2014    Updated: Mar 11, 2016
Resolved Date: Sep 19, 2014
Found In Version: 5.0.1
Fix Version: 5.0.1.19,6.0.0.12
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Kernel

Description

The kvm_iommu_map_pages function in virt/kvm/iommu.c in the Linux kernel through 3.16.1 miscalculates the number of pages during the handling of a mapping failure, which allows guest OS users to (1) cause a denial of service (host OS memory corruption) or possibly have unspecified other impact by triggering a large gfn value or (2) cause a denial of service (host OS memory consumption) by triggering a small gfn value that leads to permanently pinned pages.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3601

Other Downloads


Live chat
Online