Wind River Support Network

HomeDefectsSCP6-504
Fixed

SCP6-504 : Security Advisory - linux - CVE-2014-8369

Created: Nov 16, 2014    Updated: Dec 3, 2018
Resolved Date: Dec 21, 2014
Found In Version: 6.0.0.15
Fix Version: 6.0.0.16
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Kernel

Description

The kvm_iommu_map_pages function in virt/kvm/iommu.c in the Linux kernel through 3.17.2 miscalculates the number of pages during the handling of a mapping failure, which allows guest OS users to cause a denial of service (host OS page unpinning) or possibly have unspecified other impact by leveraging guest OS privileges.  NOTE: this vulnerability exists because of an incorrect fix for CVE-2014-3601.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8369

Other Downloads


Live chat
Online