MGASA-2014-0474

Advisory lineage Upstream: 4 Downstream: 0
Published: 21 Nov 2014, 12:44
Last modified:16 Apr 2026, 06:22

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

21 Nov 2014, 12:44
Published
Vulnerability first disclosed
16 Apr 2026, 06:22
Last Modified
Vulnerability information updated

Description

Updated kernel packages fix security vulnerabilities This kernel update is based on upstream -longterm 3.14.24 and fixes the following security issues: The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non- canonical address to a model-specific register, which allows guest OS users to cause a denial of service (host OS crash) by leveraging guest OS privileges, related to the wrmsr_interception function in arch/x86/kvm/svm.c and the handle_wrmsr function in arch/x86/kvm/vmx.c (CVE-2014-3610). Race condition in the __kvm_migrate_pit_timer function in arch/x86/kvm/i8254.c in the KVM subsystem in the Linux kernel through 3.17.2 allows guest OS users to cause a denial of service (host OS crash) by leveraging incorrect PIT emulation (CVE-2014-3611). arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel through 3.17.2 does not have an exit handler for the INVVPID instruction, which allows guest OS users to cause a denial of service (guest OS crash) via a crafted application (CVE-2014-3646). arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel through 3.17.2 does not properly perform RIP changes, which allows guest OS users to cause a denial of service (guest OS crash) via a crafted application (CVE-2014-3647). Other changes: Revert "drivers/net: Disable UFO through virtio" as it breaks VM migration add ahci support for Intel Sunrise Point / Skylake make INTEL_MEI modular (mga#14469) For other upstream changes, read the referenced changelog.

Affected Systems

  • mageiakernel

    < 3.14.24-1.mga4

  • mageiakernel-userspace-headers

    < 3.14.24-1.mga4

  • mageiakmod-broadcom-wl

    < 6.30.223.141-42.mga4.nonfree

  • mageiakmod-fglrx

    < 14.010.1006-12.mga4.nonfree

  • mageiakmod-nvidia-current

    < 331.79-12.mga4.nonfree

  • mageiakmod-nvidia173

    < 173.14.39-27.mga4.nonfree

  • mageiakmod-nvidia304

    < 304.121-7.mga4.nonfree

  • mageiakmod-vboxadditions

    < 4.3.18-4.mga4

  • mageiakmod-virtualbox

    < 4.3.18-4.mga4

  • mageiakmod-xtables-addons

    < 2.5-7.mga4

References (3)