Detections
Analytics

Alpine: multiple xen packages: security update to 4.3.2-r4 (deprecated)

critical Tenable Cloud Security Plugin ID 401191

Description

There are packages installed that are affected by multiple vulnerabilities referenced in the following CVEs:

 - The hvm_msr_read_intercept function in arch/x86/hvm/hvm.c in Xen 4.1 through 4.4.x uses an improper MSR
 range for x2APIC emulation, which allows local HVM guests to cause a denial of service (host crash) or
 read data from the hypervisor or other guests via unspecified vectors. (CVE-2014-7188)

 - The HVMOP_set_mem_access HVM control operations in Xen 4.1.x for 32-bit and 4.1.x through 4.4.x for 64-bit
 allow local guest administrators to cause a denial of service (CPU consumption) by leveraging access to
 certain service domains for HVM guests and a large input. (CVE-2014-2599)

 - The HVMOP_set_mem_type control in Xen 4.1 through 4.4.x allows local guest HVM administrators to cause a
 denial of service (hypervisor crash) or possibly execute arbitrary code by leveraging a separate qemu-dm
 vulnerability to trigger invalid page table translations for unspecified memory page types.
 (CVE-2014-3124)

 - The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x does not properly check the return value from
 the IRQ setup check, which allows local HVM guest administrators to cause a denial of service (NULL
 pointer dereference and crash) via unspecified vectors. (CVE-2014-3967)

 - The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x allows local guest HVM administrators to
 cause a denial of service (host crash) via a large number of crafted requests, which trigger an error
 messages to be logged. (CVE-2014-3968)

See Also

https://git.alpinelinux.org/aports/commit/?id=4c57113c71d286a57c2f4e487260597d04319902

https://git.alpinelinux.org/aports/commit/?id=60ab8e12aecd5f2691495bcc3a8bf5b956777c33

Plugin Details

Severity: Critical

ID: 401191

Version: Revision 1.22

Type: Local

Published: 8/16/2023

Updated: 1/17/2024

Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Medium

Score: 6.0

CVSS v2

Risk Factor: High

Base Score: 8.3

Temporal Score: 6.1

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2014-7188

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 10/2/2014

Vulnerability Publication Date: 3/25/2014

Reference Information

CVE: CVE-2014-2599, CVE-2014-3124, CVE-2014-3967, CVE-2014-3968, CVE-2014-4021, CVE-2014-7188

BID: 66407, 67113, 67794, 67824, 68070, 70198

IAVB: 2014-B-0099-S