ID |
CVE-2014-0055
|
Summary |
The get_rx_bufs function in drivers/vhost/net.c in the vhost-net subsystem in the Linux kernel package before 2.6.32-431.11.2 on Red Hat Enterprise Linux (RHEL) 6 does not properly handle vhost_get_vq_desc errors, which allows guest OS users to cause a denial of service (host OS crash) via unspecified vectors. |
References |
|
Vulnerable Configurations |
|
CVSS |
Base: | 5.5 (as of 22-04-2019 - 17:48) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-noinfo |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
ADJACENT_NETWORK |
LOW |
SINGLE |
|
Impact |
Confidentiality | Integrity | Availability |
NONE |
NONE |
COMPLETE |
|
cvss-vector
via4
|
AV:A/AC:L/Au:S/C:N/I:N/A:C
|
redhat
via4
|
advisories | | rpms | - kernel-0:2.6.32-431.11.2.el6
- kernel-abi-whitelists-0:2.6.32-431.11.2.el6
- kernel-bootwrapper-0:2.6.32-431.11.2.el6
- kernel-debug-0:2.6.32-431.11.2.el6
- kernel-debug-debuginfo-0:2.6.32-431.11.2.el6
- kernel-debug-devel-0:2.6.32-431.11.2.el6
- kernel-debuginfo-0:2.6.32-431.11.2.el6
- kernel-debuginfo-common-i686-0:2.6.32-431.11.2.el6
- kernel-debuginfo-common-ppc64-0:2.6.32-431.11.2.el6
- kernel-debuginfo-common-s390x-0:2.6.32-431.11.2.el6
- kernel-debuginfo-common-x86_64-0:2.6.32-431.11.2.el6
- kernel-devel-0:2.6.32-431.11.2.el6
- kernel-doc-0:2.6.32-431.11.2.el6
- kernel-firmware-0:2.6.32-431.11.2.el6
- kernel-headers-0:2.6.32-431.11.2.el6
- kernel-kdump-0:2.6.32-431.11.2.el6
- kernel-kdump-debuginfo-0:2.6.32-431.11.2.el6
- kernel-kdump-devel-0:2.6.32-431.11.2.el6
- perf-0:2.6.32-431.11.2.el6
- perf-debuginfo-0:2.6.32-431.11.2.el6
- python-perf-0:2.6.32-431.11.2.el6
- python-perf-debuginfo-0:2.6.32-431.11.2.el6
- rhev-hypervisor6-0:6.5-20140324.0.el6ev
|
|
refmap
via4
|
|
Last major update |
22-04-2019 - 17:48 |
Published |
26-03-2014 - 14:55 |
Last modified |
22-04-2019 - 17:48 |