Vulnerability Name:

CVE-2014-1666 (CCN-90675)

Assigned:2014-01-24
Published:2014-01-24
Updated:2018-01-03
Summary:The do_physdev_op function in Xen 4.1.5, 4.1.6.1, 4.2.2 through 4.2.3, and 4.3.x does not properly restrict access to the (1) PHYSDEVOP_prepare_msix and (2) PHYSDEVOP_release_msix operations, which allows local PV guests to cause a denial of service (host or guest malfunction) or possibly gain privileges via unspecified vectors.
CVSS v3 Severity:5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:8.3 High (CVSS v2 Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C)
6.2 Medium (Temporal CVSS v2 Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
3.4 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-264
Vulnerability Consequences:Gain Privileges
References:Source: MITRE
Type: CNA
CVE-2014-1666

Source: FEDORA
Type: UNKNOWN
FEDORA-2014-1559

Source: FEDORA
Type: UNKNOWN
FEDORA-2014-1552

Source: SUSE
Type: UNKNOWN
SUSE-SU-2014:0372

Source: SUSE
Type: UNKNOWN
SUSE-SU-2014:0373

Source: OSVDB
Type: UNKNOWN
102536

Source: CCN
Type: XSA-87
Xen Security Advisory 87 (CVE-2014-1666) - PHYSDEVOP_{prepare,release}_msix exposed to unprivileged guests

Source: SECUNIA
Type: Vendor Advisory
56650

Source: GENTOO
Type: UNKNOWN
GLSA-201407-03

Source: CONFIRM
Type: UNKNOWN
http://support.citrix.com/article/CTX200288

Source: MLIST
Type: UNKNOWN
[oss-security] 20140123 Xen Security Advisory 87 (CVE-2014-1666) - PHYSDEVOP_{prepare,release}_msix exposed to unprivileged guests

Source: BID
Type: UNKNOWN
65125

Source: CCN
Type: BID-65125
Xen 'PHYSDEVOP_{prepare,release}_msix' Operations Local Privilege Escalation Vulnerability

Source: SECTRACK
Type: UNKNOWN
1029684

Source: CONFIRM
Type: UNKNOWN
http://xenbits.xen.org/xsa/advisory-87.html

Source: MISC
Type: Patch, Vendor Advisory
http://xenbits.xen.org/xsa/xsa87-unstable-4.3.patch

Source: XF
Type: UNKNOWN
xen-cve20141666-priv-esc(90675)

Source: XF
Type: UNKNOWN
xen-cve20141666-priv-esc(90675)

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2014-1666

Vulnerable Configuration:Configuration 1:
  • cpe:/o:xen:xen:4.1.5:*:*:*:*:*:*:*
  • OR cpe:/o:xen:xen:4.1.6.1:*:*:*:*:*:*:*
  • OR cpe:/o:xen:xen:4.2.2:*:*:*:*:*:*:*
  • OR cpe:/o:xen:xen:4.2.3:*:*:*:*:*:*:*
  • OR cpe:/o:xen:xen:4.3.0:*:*:*:*:*:*:*
  • OR cpe:/o:xen:xen:4.3.1:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20141666
    V
    CVE-2014-1666
    2022-05-20
    oval:org.opensuse.security:def:33793
    P
    Security update for libsndfile (Important)
    2022-01-05
    oval:org.opensuse.security:def:26218
    P
    Security update for java-1_8_0-ibm (Important) (in QA)
    2022-01-04
    oval:org.opensuse.security:def:30284
    P
    Security update for log4j (Important)
    2021-12-17
    oval:org.opensuse.security:def:29458
    P
    Security update for openssh (Important)
    2021-12-06
    oval:org.opensuse.security:def:34006
    P
    Security update for clamav (Moderate)
    2021-12-01
    oval:org.opensuse.security:def:55977
    P
    Security update for xen (Moderate)
    2021-11-29
    oval:org.opensuse.security:def:34595
    P
    Security update for postgresql10 (Important)
    2021-11-22
    oval:org.opensuse.security:def:56089
    P
    Security update for samba (Important)
    2021-11-16
    oval:org.opensuse.security:def:26161
    P
    Security update for samba (Important)
    2021-11-10
    oval:org.opensuse.security:def:57520
    P
    Security update for opensc (Important)
    2021-10-29
    oval:org.opensuse.security:def:26143
    P
    Security update for curl (Moderate)
    2021-10-11
    oval:org.opensuse.security:def:31687
    P
    Security update for sqlite3 (Important)
    2021-09-23
    oval:org.opensuse.security:def:26132
    P
    Security update for MozillaFirefox (Important)
    2021-09-22
    oval:org.opensuse.security:def:26131
    P
    Security update for xen (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:34538
    P
    Security update for postgresql12 (Moderate)
    2021-09-16
    oval:org.opensuse.security:def:33962
    P
    Security update for openssl-1_0_0 (Important)
    2021-08-24
    oval:org.opensuse.security:def:32160
    P
    Security update for djvulibre (Important)
    2021-08-05
    oval:org.opensuse.security:def:56051
    P
    Security update for libsndfile (Critical)
    2021-08-05
    oval:org.opensuse.security:def:55220
    P
    Security update for MozillaFirefox (Important)
    2021-07-16
    oval:org.opensuse.security:def:33938
    P
    Security update for openexr (Important)
    2021-06-24
    oval:org.opensuse.security:def:26080
    P
    Security update for libnettle (Important)
    2021-06-23
    oval:org.opensuse.security:def:30210
    P
    Security update for ucode-intel (Important)
    2021-06-10
    oval:org.opensuse.security:def:42734
    P
    xen-4.4.2_08-1.7 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:36327
    P
    xen-4.4.2_08-1.7 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:36582
    P
    xen-devel-4.4.2_08-1.7 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:32103
    P
    Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)
    2021-06-04
    oval:org.opensuse.security:def:29372
    P
    Security update for libwebp (Critical)
    2021-06-02
    oval:org.opensuse.security:def:30199
    P
    Security update for djvulibre (Important)
    2021-05-31
    oval:org.opensuse.security:def:34440
    P
    Security update for curl (Moderate)
    2021-05-26
    oval:org.opensuse.security:def:57446
    P
    Security update for libxml2 (Important)
    2021-05-19
    oval:org.opensuse.security:def:30198
    P
    Security update for libxml2 (Important)
    2021-05-19
    oval:org.opensuse.security:def:33899
    P
    Security update for permissions (Important)
    2021-04-29
    oval:org.opensuse.security:def:33636
    P
    Security update for xen (Important)
    2021-04-19
    oval:org.opensuse.security:def:55885
    P
    Security update for clamav (Important)
    2021-04-14
    oval:org.opensuse.security:def:26207
    P
    Security update for openssl-1_1 (Moderate)
    2021-03-09
    oval:org.opensuse.security:def:34644
    P
    Security update for grub2 (Important)
    2021-03-02
    oval:org.opensuse.security:def:32247
    P
    Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)
    2021-02-10
    oval:org.opensuse.security:def:31649
    P
    Security update for postgresql, postgresql12, postgresql13 (Important)
    2021-01-26
    oval:org.opensuse.security:def:29957
    P
    Security update for openssl (Important)
    2020-12-11
    oval:org.opensuse.security:def:55777
    P
    Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP2) (Important)
    2020-12-07
    oval:org.opensuse.security:def:32011
    P
    Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)
    2020-12-07
    oval:org.opensuse.security:def:35698
    P
    foomatic-filters-3.0.2-269.35.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:28857
    P
    Security update for gdm (Important)
    2020-12-03
    oval:org.opensuse.security:def:35739
    P
    libapr1-1.3.3-11.18.17.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:31794
    P
    Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:26708
    P
    glibc on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28126
    P
    Security update for icu (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25877
    P
    Security update for flash-player (Important)
    2020-12-01
    oval:org.opensuse.security:def:26664
    P
    aaa_base on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29600
    P
    Security update for augeas (Low)
    2020-12-01
    oval:org.opensuse.security:def:27407
    P
    gdk-pixbuf on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34902
    P
    Security update for dhcp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26907
    P
    gnome-screensaver on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33182
    P
    libsoup-2_4-1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27090
    P
    bash on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29913
    P
    Security update for libcap
    2020-12-01
    oval:org.opensuse.security:def:27693
    P
    Security update for xorg-x11-libxcb
    2020-12-01
    oval:org.opensuse.security:def:30804
    P
    Security update for cifs-utils (Important)
    2020-12-01
    oval:org.opensuse.security:def:32547
    P
    libapr-util1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29161
    P
    Security update for libxml2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:55047
    P
    yast2-core on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26594
    P
    libopensc2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27874
    P
    Security update for rubygem-activerecord-2_3 and rubygem-activesupport-2_3
    2020-12-01
    oval:org.opensuse.security:def:31793
    P
    Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:34304
    P
    Security update for quagga (Low)
    2020-12-01
    oval:org.opensuse.security:def:26557
    P
    gnome-screensaver on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28087
    P
    Security update for gd (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31011
    P
    Security update for libX11 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25876
    P
    Security update for libssh (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26536
    P
    dbus-1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29515
    P
    Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34844
    P
    Security update for bind (Important)
    2020-12-01
    oval:org.opensuse.security:def:26863
    P
    apache2-mod_jk on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33171
    P
    libpixman-1-0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27037
    P
    syslog-ng on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29895
    P
    Security update for krb5 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27611
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:30649
    P
    Security update for MozillaFirefox
    2020-12-01
    oval:org.opensuse.security:def:32508
    P
    expat on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:35060
    P
    Security update for java-1_6_0-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:29160
    P
    Security update for libxml2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:54809
    P
    icu on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33548
    P
    Security update for ImageMagick (Important)
    2020-12-01
    oval:org.opensuse.security:def:26555
    P
    glib2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27236
    P
    lxc on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34220
    P
    Security update for php5 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26473
    P
    Security update for Chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:28038
    P
    Security update for cracklib (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30967
    P
    Security update for grub2 (Important)
    2020-12-01
    oval:org.opensuse.security:def:33290
    P
    xen on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26472
    P
    Security update for Chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:27325
    P
    xen on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34685
    P
    Security update for Xen
    2020-12-01
    oval:org.opensuse.security:def:26849
    P
    zoo on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28822
    P
    Security update for python-lxml
    2020-12-01
    oval:org.opensuse.security:def:33170
    P
    libotr2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26886
    P
    ecryptfs-utils-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29856
    P
    Security update for Linux Kernel
    2020-12-01
    oval:org.opensuse.security:def:56170
    P
    Security update for dbus-1 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27483
    P
    libsmi on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30562
    P
    Security update for pcp
    2020-12-01
    oval:org.opensuse.security:def:32459
    P
    Security update for xorg-x11-libX11 (Important)
    2020-12-01
    oval:org.opensuse.security:def:35016
    P
    Security update for graphviz (Low)
    2020-12-01
    oval:org.opensuse.security:def:54669
    P
    rhythmbox on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33491
    P
    Security update for libtiff
    2020-12-01
    oval:org.opensuse.security:def:26506
    P
    Security update for chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:27192
    P
    libksba on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30632
    P
    Security update for Xen
    2020-12-01
    oval:org.opensuse.security:def:34209
    P
    Security update for perl-PlRPC (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26416
    P
    Security update for nginx (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27985
    P
    Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:30947
    P
    Security update for glibc (Important)
    2020-12-01
    oval:org.opensuse.security:def:33251
    P
    rsyslog on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26461
    P
    Security update for chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:55492
    P
    Security update for libksba (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27290
    P
    shim on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31879
    P
    Security update for dhcp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26810
    P
    pure-ftpd on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28184
    P
    Security update for krb5 (Important)
    2020-12-01
    oval:org.opensuse.security:def:25952
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:26802
    P
    pcsc-lite on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29807
    P
    Security update for jakarta-commons-collections (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34684
    P
    Security update for Xen
    2020-12-01
    oval:org.opensuse.security:def:27419
    P
    imlib on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30505
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:32403
    P
    Security update for vim (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:34990
    P
    Security update for glibc
    2020-12-01
    oval:org.opensuse.security:def:27580
    P
    xen-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:54647
    P
    pcsc-ccid on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33396
    P
    Security update for SUSE Manager Client Tools (Critical)
    2020-12-01
    oval:org.opensuse.security:def:26453
    P
    Security update for kauth (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27178
    P
    libcgroup1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30595
    P
    Security update for php5 (Important)
    2020-12-01
    oval:org.opensuse.security:def:34208
    P
    Security update for perl-DBI (Important)
    2020-12-01
    oval:org.opensuse.security:def:26335
    P
    security update for go (Low)
    2020-12-01
    oval:org.opensuse.security:def:27834
    P
    Security update for mono-core (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30908
    P
    Security update for freetype2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32613
    P
    wget on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26460
    P
    Security update for chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:29241
    P
    Security update for samba (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:55326
    P
    m4 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33850
    P
    Security update for icu
    2020-12-01
    oval:org.opensuse.security:def:26652
    P
    xorg-x11 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31805
    P
    Security update for apache2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26761
    P
    libpulse-browse0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28140
    P
    Security update for java-1_7_1-ibm (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25888
    P
    Security update for flash-player (Critical)
    2020-12-01
    oval:org.opensuse.security:def:26745
    P
    libexiv2-4 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29753
    P
    Security update for ghostscript-library (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27408
    P
    ghostscript-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:30416
    P
    Security update for xorg-x11-libXext
    2020-12-01
    oval:org.opensuse.security:def:34951
    P
    Security update for Mozilla Firefox
    2020-12-01
    oval:org.opensuse.security:def:27545
    P
    python-imaging on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:54646
    P
    patch on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33261
    P
    strongswan on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26302
    P
    Security update for python-PyYAML (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27139
    P
    gpgme on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27750
    P
    Security update for gd
    2020-12-01
    oval:org.opensuse.security:def:30859
    P
    Security update for e2fsprogs
    2020-12-01
    oval:org.opensuse.security:def:32569
    P
    libsoup-2_4-1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:29172
    P
    Security update for microcode_ctl (Important)
    2020-12-01
    oval:org.opensuse.security:def:26608
    P
    libxml2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27909
    P
    Security update for Xen
    2020-12-01
    oval:org.mitre.oval:def:25302
    P
    SUSE-SU-2014:0372-1 -- Security update for Xen
    2014-09-08
    oval:org.mitre.oval:def:25390
    P
    SUSE-SU-2014:0373-1 -- Security update for Xen
    2014-09-08
    oval:org.opensuse.security:def:80154
    P
    Security update for Xen
    2014-02-27
    oval:com.ubuntu.precise:def:20141666000
    V
    CVE-2014-1666 on Ubuntu 12.04 LTS (precise) - medium.
    2014-01-26
    BACK
    xen xen 4.1.5
    xen xen 4.1.6.1
    xen xen 4.2.2
    xen xen 4.2.3
    xen xen 4.3.0
    xen xen 4.3.1