Vulnerability CVE-2014-3125: Information
Description
Xen 4.4.x, when running on an ARM system, does not properly context switch the CNTKCTL_EL1 register, which allows local guest users to modify the hardware timers and cause a denial of service (crash) via unspecified vectors.
Severity: MEDIUM (6.2)
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
xen | p10 | 4.4.0-alt7 | 4.14.1-alt2 | ALT-PU-2014-1616-1 | 119591 | Fixed |
xen | p9 | 4.4.0-alt7 | 4.10.3-alt1 | ALT-PU-2014-1616-1 | 119591 | Fixed |
xen | c10f1 | 4.4.0-alt7 | 4.14.1-alt2 | ALT-PU-2014-1616-1 | 119591 | Fixed |
xen | c9f2 | 4.4.0-alt7 | 4.10.3-alt1 | ALT-PU-2014-1616-1 | 119591 | Fixed |