CVE-2014-3610 vulnerability in Canonical and Other Products
Published on November 10, 2014

The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non-canonical address to a model-specific register, which allows guest OS users to cause a denial of service (host OS crash) by leveraging guest OS privileges, related to the wrmsr_interception function in arch/x86/kvm/svm.c and the handle_wrmsr function in arch/x86/kvm/vmx.c.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2014-3610

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2014-3610 are published in these products:

Canonical Ubuntu Linux

Debian Linux

Linux Kernel

OpenSuse Evergreen

Suse Linux Enterprise Server

Exploit Probability

EPSS

0.05%

Percentile

15.56%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2014-3610 vulnerability in Canonical and Other ProductsPublished on November 10, 2014

Products Associated with CVE-2014-3610

Exploit Probability

CVE-2014-3610 vulnerability in Canonical and Other Products
Published on November 10, 2014