CVE-2014-4021

N/A

Descricao

Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado6/18/2014

Ultima modificacao4/12/2025

Fontenvd

Avistamentos honeypot0

Produtos afetados

xen:xen

Fraquezas (CWE)

CWE-119

Referencias

http://linux.oracle.com/errata/ELSA-2014-0926-1.html(cve@mitre.org)

http://linux.oracle.com/errata/ELSA-2014-0926.html(cve@mitre.org)

http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html(cve@mitre.org)

http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html(cve@mitre.org)

http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html(cve@mitre.org)

http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html(cve@mitre.org)

http://secunia.com/advisories/59208(cve@mitre.org)

http://secunia.com/advisories/60027(cve@mitre.org)

http://secunia.com/advisories/60130(cve@mitre.org)

http://secunia.com/advisories/60471(cve@mitre.org)

http://security.gentoo.org/glsa/glsa-201407-03.xml(cve@mitre.org)

http://support.citrix.com/article/CTX140984(cve@mitre.org)

http://www.debian.org/security/2014/dsa-3006(cve@mitre.org)

http://www.securityfocus.com/bid/68070(cve@mitre.org)

http://www.securitytracker.com/id/1030442(cve@mitre.org)

http://xenbits.xen.org/xsa/advisory-100.html(cve@mitre.org)

http://linux.oracle.com/errata/ELSA-2014-0926-1.html(af854a3a-2127-422b-91ae-364da2661108)

http://linux.oracle.com/errata/ELSA-2014-0926.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/59208(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/60027(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/60130(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/60471(af854a3a-2127-422b-91ae-364da2661108)

http://security.gentoo.org/glsa/glsa-201407-03.xml(af854a3a-2127-422b-91ae-364da2661108)

http://support.citrix.com/article/CTX140984(af854a3a-2127-422b-91ae-364da2661108)

http://www.debian.org/security/2014/dsa-3006(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/68070(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id/1030442(af854a3a-2127-422b-91ae-364da2661108)

http://xenbits.xen.org/xsa/advisory-100.html(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.