Skip to main content

Linux Enterprise Real Time Extension CVE-2014-3601

MEDIUM
Numeric Errors (CWE-189)
2014-09-01 secalert@redhat.com
4.3
CVSS 2.0 · NVD
Share

Severity by source

NVD PRIMARY
4.3 MEDIUM
AV:A/AC:H/Au:S/C:N/I:N/A:C

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

AV:A/AC:H/Au:S/C:N/I:N/A:C
Attack Vector
Adjacent
Attack Complexity
High
Confidentiality
None
Integrity
None
Availability
C

Lifecycle Timeline

1
CVE Published
Sep 01, 2014 - 01:55 cve.org
MEDIUM 4.3

DescriptionCVE.org

The kvm_iommu_map_pages function in virt/kvm/iommu.c in the Linux kernel through 3.16.1 miscalculates the number of pages during the handling of a mapping failure, which allows guest OS users to (1) cause a denial of service (host OS memory corruption) or possibly have unspecified other impact by triggering a large gfn value or (2) cause a denial of service (host OS memory consumption) by triggering a small gfn value that leads to permanently pinned pages.

AnalysisAI

The kvm_iommu_map_pages function in virt/kvm/iommu.c in the Linux kernel through 3.16.1 miscalculates the number of pages during the handling of a mapping failure, which allows guest OS users to (1). Rated medium severity (CVSS 4.3). Public exploit code available.

Technical ContextAI

This vulnerability is classified under CWE-189. The kvm_iommu_map_pages function in virt/kvm/iommu.c in the Linux kernel through 3.16.1 miscalculates the number of pages during the handling of a mapping failure, which allows guest OS users to (1) cause a denial of service (host OS memory corruption) or possibly have unspecified other impact by triggering a large gfn value or (2) cause a denial of service (host OS memory consumption) by triggering a small gfn value that leads to permanently pinned pages. Affected products include: Suse Linux Enterprise Real Time Extension, Opensuse Evergreen, Suse Linux Enterprise Server, Suse Suse Linux Enterprise Server, Canonical Ubuntu Linux. Version information: through 3.16.1.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2014-3687 HIGH POC
7.5 Nov 10

The sctp_assoc_lookup_asconf_ack function in net/sctp/associola.c in the SCTP implementation in the Linux kernel through

CVE-2014-8369 HIGH POC
7.8 Nov 10

The kvm_iommu_map_pages function in virt/kvm/iommu.c in the Linux kernel through 3.17.2 miscalculates the number of page

CVE-2014-5077 HIGH
7.1 Aug 01

The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is e

CVE-2014-8559 MEDIUM POC
5.5 Nov 10

The d_walk function in fs/dcache.c in the Linux kernel through 3.17.2 does not properly maintain the semantics of rename

CVE-2014-4608 HIGH
7.3 Jul 03

Multiple integer overflows in the lzo1x_decompress_safe function in lib/lzo/lzo1x_decompress_safe.c in the LZO decompres

CVE-2016-2782 MEDIUM POC
4.6 Apr 27

The treo_attach function in drivers/usb/serial/visor.c in the Linux kernel before 4.5 allows physically proximate attack

CVE-2014-4667 MEDIUM
5.0 Jul 03

The sctp_association_free function in net/sctp/associola.c in the Linux kernel before 3.15.2 does not properly manage a

CVE-2015-8539 HIGH
7.8 Feb 08

The KEYS subsystem in the Linux kernel before 4.4 allows local users to gain privileges or cause a denial of service (BU

CVE-2016-5244 HIGH
7.5 Jun 27

The rds_inc_info_copy function in net/rds/recv.c in the Linux kernel through 4.6.3 does not initialize a certain structu

CVE-2014-1737 HIGH
7.2 May 11

The raw_cmd_copyin function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly handle error

CVE-2015-8785 MEDIUM
6.2 Feb 08

The fuse_fill_write_pages function in fs/fuse/file.c in the Linux kernel before 4.4 allows local users to cause a denial

CVE-2014-9585 LOW POC
2.1 Jan 09

The vdso_addr function in arch/x86/vdso/vma.c in the Linux kernel through 3.18.2 does not properly choose memory locatio

Share

CVE-2014-3601 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy