CVE-2014-5147
Xen 4.4.x - Denial of Service via 32-bit Guest Process on ARM
Title source: llmDescription
Xen 4.4.x, when running a 64-bit kernel on an ARM system, does not properly handle traps from the guest domain that use a different address width, which allows local guest users to cause a denial of service (host crash) via a crafted 32-bit process.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1030724
Patch, Vendor Advisory x_refsource_confirm
http://xenbits.xen.org/xsa/advisory-102.html
Scores
EPSS
0.0021
EPSS Percentile
43.7%
Details
CWE
CWE-264
Status
published
Products (1)
xen/xen
4.4.0 (2 CPE variants)
Published
Aug 29, 2014
Tracked Since
Feb 18, 2026