| ID |
CVE-2014-0055
|
| Summary |
The get_rx_bufs function in drivers/vhost/net.c in the vhost-net subsystem in the Linux kernel package before 2.6.32-431.11.2 on Red Hat Enterprise Linux (RHEL) 6 does not properly handle vhost_get_vq_desc errors, which allows guest OS users to cause a denial of service (host OS crash) via unspecified vectors. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 5.5 (as of 22-04-2019 - 17:48) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-noinfo |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| ADJACENT_NETWORK |
LOW |
SINGLE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| NONE |
NONE |
COMPLETE |
|
| cvss-vector
via4
|
AV:A/AC:L/Au:S/C:N/I:N/A:C
|
| redhat
via4
|
| advisories | | | rpms | - kernel-0:2.6.32-431.11.2.el6
- kernel-abi-whitelists-0:2.6.32-431.11.2.el6
- kernel-bootwrapper-0:2.6.32-431.11.2.el6
- kernel-debug-0:2.6.32-431.11.2.el6
- kernel-debug-debuginfo-0:2.6.32-431.11.2.el6
- kernel-debug-devel-0:2.6.32-431.11.2.el6
- kernel-debuginfo-0:2.6.32-431.11.2.el6
- kernel-debuginfo-common-i686-0:2.6.32-431.11.2.el6
- kernel-debuginfo-common-ppc64-0:2.6.32-431.11.2.el6
- kernel-debuginfo-common-s390x-0:2.6.32-431.11.2.el6
- kernel-debuginfo-common-x86_64-0:2.6.32-431.11.2.el6
- kernel-devel-0:2.6.32-431.11.2.el6
- kernel-doc-0:2.6.32-431.11.2.el6
- kernel-firmware-0:2.6.32-431.11.2.el6
- kernel-headers-0:2.6.32-431.11.2.el6
- kernel-kdump-0:2.6.32-431.11.2.el6
- kernel-kdump-debuginfo-0:2.6.32-431.11.2.el6
- kernel-kdump-devel-0:2.6.32-431.11.2.el6
- perf-0:2.6.32-431.11.2.el6
- perf-debuginfo-0:2.6.32-431.11.2.el6
- python-perf-0:2.6.32-431.11.2.el6
- python-perf-debuginfo-0:2.6.32-431.11.2.el6
- rhev-hypervisor6-0:6.5-20140324.0.el6ev
|
|
| refmap
via4
|
|
| Last major update |
22-04-2019 - 17:48 |
| Published |
26-03-2014 - 14:55 |
| Last modified |
22-04-2019 - 17:48 |
