CVE-2014-8867

Description

The acceleration support for the "REP MOVS" instruction in Xen 4.4.x, 3.2.x, and earlier lacks properly bounds checking for memory mapped I/O (MMIO) emulated in the hypervisor, which allows local HVM guests to cause a denial of service (host crash) via unspecified vectors.

How to fix CVE-2014-8867

To remediate CVE-2014-8867, upgrade the affected package to a fixed version below.

• Debian/xen—upgrade to 4.4.1-5 or later

Is CVE-2014-8867 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 4.4.1-5

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2014-8867