CVE-2014-3611
MEDIUMLinux Kernel < 3.17.2 - Denial of Service via KVM PIT Emulation Race Condition
Title source: llmDescription
Race condition in the __kvm_migrate_pit_timer function in arch/x86/kvm/i8254.c in the KVM subsystem in the Linux kernel through 3.17.2 allows guest OS users to cause a denial of service (host OS crash) by leveraging incorrect PIT emulation.
References (12)
Core 12
Core References
Third Party Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2491-1
Third Party Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2418-1
Third Party Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2417-1
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2014/dsa-3060
Issue Tracking, Patch, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1144878
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0869.html
Patch, Third Party Advisory x_refsource_confirm
https://github.com/torvalds/linux/commit/2febc839133280d5a5e8e1179c94ea674489dae2
Third Party Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2394-1
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0284.html
Mailing List, Patch, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2014/10/24/9
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0126.html
Scores
CVSS v3
4.7
EPSS
0.0029
EPSS Percentile
21.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-362
Status
published
Products (5)
canonical/ubuntu_linux
10.04
canonical/ubuntu_linux
12.04
debian/debian_linux
7.0
linux/linux_kernel
< 3.17.2
redhat/enterprise_linux
5.0
Published
Nov 10, 2014
Tracked Since
Feb 18, 2026