The Intel VT-d Interrupt Remapping engine in Xen 3.3.x up to and including 4.3.x allows local guests to cause a denial of service (kernel panic) via a malformed Message Signaled Interrupt (MSI) from a PCI device that is bus mastering capable that triggers a System Error Reporting (SERR) Non-Maskable Interrupt (NMI).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |
||
xen xen 4.3.0 |
||
xen xen 3.3.0 |
||
xen xen 3.3.1 |
||
xen xen 4.0.0 |
||
xen xen 4.0.1 |
||
xen xen 4.1.3 |
||
xen xen 4.1.4 |
||
xen xen 3.4.1 |
||
xen xen 3.4.2 |
||
xen xen 4.0.4 |
||
xen xen 4.1.0 |
||
xen xen 4.2.1 |
||
xen xen 4.2.2 |
||
xen xen 3.4.3 |
||
xen xen 3.4.4 |
||
xen xen 4.1.1 |
||
xen xen 4.1.2 |
||
xen xen 3.3.2 |
||
xen xen 3.4.0 |
||
xen xen 4.0.2 |
||
xen xen 4.0.3 |
||
xen xen 4.1.5 |
||
xen xen 4.2.0 |
The latest fixing fashions for open-source hypervisors hit the catwalk
The Xen Project has fixed 35 flaws, all rated critical, for versions 4.3 and 4.4 of its flagship hypervisor. The fixes appear to correspond to flaws identified after the late February 2014 cloudpocalypse, when major cloud providers feared they would once again need to reboot substantial parts of their server fleets to keep them secure. Xen 4.3 gets 17 fixes, all available in the new version 4.3.4. Xen 4.4, now best-used as version 4.4.2, gets the other 18. The updates are available at the Xen pr...