CVE-2014-3690

Published: Nov 10, 2014Modified: May 6, 2026

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allows host OS users to kill arbitrary processes or cause a denial of service (system disruption) by leveraging /dev/kvm access, as demonstrated by PR_SET_TSC prctl calls within a modified copy of QEMU.

Affected (13)

Products: Linux: Linux Kernel · Novell: Suse Linux Enterprise Desktop, Suse Linux Enterprise Server · Opensuse: Evergreen · +4 more

Show all products

Linux: Linux Kernel · Novell: Suse Linux Enterprise Desktop, Suse Linux Enterprise Server · Opensuse: Evergreen · Suse: Linux Enterprise Real Time Extension, Linux Enterprise Software Development Kit, Linux Enterprise Workstation Extension · Redhat: Enterprise Linux · Debian: Debian Linux · Canonical: Ubuntu Linux

Linux

1 product

Linux Kernel

Novell

2 products

Suse Linux Enterprise Desktop

Suse Linux Enterprise Server

Opensuse

1 product

Evergreen

Suse

3 products

Linux Enterprise Real Time Extension

Linux Enterprise Software Development Kit

Linux Enterprise Workstation Extension

1 product

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 3.17.2

Configuration B

7 vulnerable

Vulnerable Software	Affected Versions
Novell Suse Linux Enterprise Desktop	Version 12.0
Novell Suse Linux Enterprise Server	Version 11 sp2
Novell Suse Linux Enterprise Server	Version 12.0
Opensuse Evergreen	Version 11.4
Suse Linux Enterprise Real Time Extension	Version 11 sp3
Suse Linux Enterprise Software Development Kit	Version 12
Suse Linux Enterprise Workstation Extension	Version 12

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 5.0

Configuration D

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 7.0

Configuration E

3 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 14.10

Related CWEs

CWE-400

Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (44)

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d974baa398f34393db76be45f7d4d04fbdbb4a0a

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00035.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00010.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00015.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-0290.html

Source: secalert@redhat.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-0782.html

Source: secalert@redhat.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2015-0864.html

Source: secalert@redhat.com

Third Party Advisory

http://secunia.com/advisories/60174

Source: secalert@redhat.com

Broken Link

http://www.debian.org/security/2014/dsa-3060

Source: secalert@redhat.com

Third Party Advisory

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.2

Source: secalert@redhat.com

Mailing ListPatchVendor Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2015:058

Source: secalert@redhat.com

Broken Link

http://www.openwall.com/lists/oss-security/2014/10/21/4

Source: secalert@redhat.com

Mailing ListPatchThird Party Advisory

http://www.openwall.com/lists/oss-security/2014/10/29/7

Source: secalert@redhat.com

Mailing ListPatchThird Party Advisory

http://www.securityfocus.com/bid/70691

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

http://www.ubuntu.com/usn/USN-2417-1

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2418-1

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2419-1

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2420-1

Source: secalert@redhat.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2421-1

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1153322

Source: secalert@redhat.com

Issue TrackingPatchThird Party Advisory

https://github.com/torvalds/linux/commit/d974baa398f34393db76be45f7d4d04fbdbb4a0a

Source: secalert@redhat.com

PatchThird Party Advisory

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d974baa398f34393db76be45f7d4d04fbdbb4a0a