Upstream information
Description
The vgic_distr_mmio_write function in the virtual guest interrupt controller (GIC) distributor (arch/arm/vgic.c) in Xen 4.4.x, when running on an ARM system, allows local guest users to cause a denial of service (NULL pointer dereference and host crash) via unspecified vectors.SUSE information
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having moderate severity.
| CVSS detail | National Vulnerability Database |
|---|---|
| Base Score | 5.5 |
| Vector | AV:A/AC:L/Au:S/C:N/I:N/A:C |
| Access Vector | Adjacent Network |
| Access Complexity | Low |
| Authentication | Single |
| Confidentiality Impact | None |
| Integrity Impact | None |
| Availability Impact | Complete |
Note from the SUSE Security Team on the xen package
This issue likely only affects the XEN hypervisor itself, unless otherwise stated. The userland utilities in -tools and libraries in -libs are shipped together with the xen hypervisor as they are built from one source and do not contain hypervisor specific fixes. SUSE Bugzilla entry: 874806 [RESOLVED / UPSTREAM] No SUSE Security Announcements cross referenced.SUSE Timeline for this CVE
CVE page created: Fri Apr 25 05:23:57 2014CVE page last modified: Mon Oct 6 18:20:44 2025