Xen 'PHYSDEVOP_{prepare,release}_msix' Operations Local Privilege Escalation Vulnerability

Bugtraq ID: 65125
Class: Design Error
CVE: CVE-2014-1666
Remote: No
Local: Yes
Published: Jan 24 2014 12:00AM
Updated: Dec 19 2014 12:56AM
Credit: Reported in xen-devel mailing list
Vulnerable: SuSE SUSE Linux Enterprise Server 11 SP2
+ Linux kernel 2.6.5
Gentoo Linux
Citrix XenServer 4.1
Citrix XenServer 6.0
Citrix XenServer 5.6 SP2
Citrix XenServer 5.6 Feature Pack 1
Citrix XenServer 5.6 Common Criteria
Citrix XenServer 5.6
Citrix XenServer 5.5
Citrix XenServer 5.0 Update 3
Citrix XenServer 5.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus