Executive Summary

Informations
NameCVE-2014-3645First vendor Publication2014-11-10
VendorCveLast vendor Modification2015-03-17

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score2.1Attack RangeLocal
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.12 does not have an exit handler for the INVEPT instruction, which allows guest OS users to cause a denial of service (guest OS crash) via a crafted application.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3645

CWE : Common Weakness Enumeration

%idName
100 %CWE-20Improper Input Validation

CPE : Common Platform Enumeration

TypeDescriptionCount
Os1973

Nessus® Vulnerability Scanner

DateDescription
2017-04-03Name : The remote OracleVM host is missing one or more security updates.
File : oraclevm_OVMSA-2017-0057.nasl - Type : ACT_GATHER_INFO
2015-07-30Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2015-1272.nasl - Type : ACT_GATHER_INFO
2015-03-05Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2015-0284.nasl - Type : ACT_GATHER_INFO
2015-02-06Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2015-0126.nasl - Type : ACT_GATHER_INFO
2014-12-17Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL15912.nasl - Type : ACT_GATHER_INFO
2014-12-05Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2014-3096.nasl - Type : ACT_GATHER_INFO
2014-11-28Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2014-230.nasl - Type : ACT_GATHER_INFO
2014-11-25Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2417-1.nasl - Type : ACT_GATHER_INFO
2014-11-12Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2014-1843.nasl - Type : ACT_GATHER_INFO
2014-11-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2014-1843.nasl - Type : ACT_GATHER_INFO
2014-11-12Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2014-1843.nasl - Type : ACT_GATHER_INFO
2014-11-04Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20141028_kernel_on_SL7_x.nasl - Type : ACT_GATHER_INFO
2014-11-03Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3060.nasl - Type : ACT_GATHER_INFO
2014-10-31Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2014-3084.nasl - Type : ACT_GATHER_INFO
2014-10-29Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2014-1724.nasl - Type : ACT_GATHER_INFO
2014-10-29Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2014-1724.nasl - Type : ACT_GATHER_INFO
2014-10-29Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2014-1724.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
CONFIRM http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=b...
https://bugzilla.redhat.com/show_bug.cgi?id=1144835
https://github.com/torvalds/linux/commit/bfd0a56b90005f8c8a004baf407ad90045c2...
DEBIAN http://www.debian.org/security/2014/dsa-3060
MLIST http://www.openwall.com/lists/oss-security/2014/10/24/9
REDHAT http://rhn.redhat.com/errata/RHSA-2015-0126.html
http://rhn.redhat.com/errata/RHSA-2015-0284.html
UBUNTU http://www.ubuntu.com/usn/USN-2417-1
http://www.ubuntu.com/usn/USN-2418-1

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
DateInformations
2019-01-25 12:06:20
  • Multiple Updates
2018-11-17 12:04:52
  • Multiple Updates
2018-10-30 12:06:56
  • Multiple Updates
2018-08-09 12:02:56
  • Multiple Updates
2018-04-25 12:05:44
  • Multiple Updates
2017-04-04 13:20:39
  • Multiple Updates
2016-08-12 12:01:31
  • Multiple Updates
2016-06-30 21:38:06
  • Multiple Updates
2016-06-28 22:51:58
  • Multiple Updates
2016-04-27 00:53:29
  • Multiple Updates
2015-07-31 13:28:39
  • Multiple Updates
2015-03-18 09:26:58
  • Multiple Updates
2015-03-06 13:25:49
  • Multiple Updates
2015-02-07 13:25:10
  • Multiple Updates
2014-12-18 13:25:33
  • Multiple Updates
2014-12-07 09:25:46
  • Multiple Updates
2014-12-06 13:27:02
  • Multiple Updates
2014-11-29 13:27:15
  • Multiple Updates
2014-11-26 13:28:15
  • Multiple Updates
2014-11-13 13:27:03
  • Multiple Updates
2014-11-13 00:23:47
  • Multiple Updates
2014-11-10 21:24:25
  • Multiple Updates
2014-11-10 17:23:24
  • First insertion