CVE-2014-3690
- EPSS 0.52%
- Veröffentlicht 10.11.2014 11:55:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allows host OS users to kill arbitrary processes or caus...
CVE-2014-3610
- EPSS 0.6%
- Veröffentlicht 10.11.2014 11:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non-canonical address to a model-specific register, which allows guest OS users to cause a denial of service (host OS...
CVE-2014-3611
- EPSS 0.29%
- Veröffentlicht 10.11.2014 11:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
Race condition in the __kvm_migrate_pit_timer function in arch/x86/kvm/i8254.c in the KVM subsystem in the Linux kernel through 3.17.2 allows guest OS users to cause a denial of service (host OS crash) by leveraging incorrect PIT emulation.
CVE-2014-3645
- EPSS 0.41%
- Veröffentlicht 10.11.2014 11:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.12 does not have an exit handler for the INVEPT instruction, which allows guest OS users to cause a denial of service (guest OS crash) via a crafted application.
CVE-2014-3646
- EPSS 0.43%
- Veröffentlicht 10.11.2014 11:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel through 3.17.2 does not have an exit handler for the INVVPID instruction, which allows guest OS users to cause a denial of service (guest OS crash) via a crafted application.
CVE-2014-3647
- EPSS 0.59%
- Veröffentlicht 10.11.2014 11:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel through 3.17.2 does not properly perform RIP changes, which allows guest OS users to cause a denial of service (guest OS crash) via a crafted application.
CVE-2014-3673
- EPSS 7.46%
- Veröffentlicht 10.11.2014 11:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
The SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (system crash) via a malformed ASCONF chunk, related to net/sctp/sm_make_chunk.c and net/sctp/sm_statefuns.c.
CVE-2014-3687
- EPSS 8.58%
- Veröffentlicht 10.11.2014 11:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
The sctp_assoc_lookup_asconf_ack function in net/sctp/associola.c in the SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (panic) via duplicate ASCONF chunks that trigger an incorrect uncork ...
CVE-2014-7975
- EPSS 0.46%
- Veröffentlicht 13.10.2014 10:55:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
The do_umount function in fs/namespace.c in the Linux kernel through 3.17 does not require the CAP_SYS_ADMIN capability for do_remount_sb calls that change the root filesystem to read-only, which allows local users to cause a denial of service (loss ...
CVE-2014-8086
- EPSS 0.37%
- Veröffentlicht 13.10.2014 10:55:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
Race condition in the ext4_file_write_iter function in fs/ext4/file.c in the Linux kernel through 3.17 allows local users to cause a denial of service (file unavailability) via a combination of a write action and an F_SETFL fcntl operation for the O_...