Unrated severityNVD Advisory· Published Apr 1, 2014· Updated Jun 17, 2026
CVE-2014-1894
CVE-2014-1894
Description
Multiple integer overflows in unspecified suboperations in the flask hypercall in Xen 3.2.x and earlier, when XSM is enabled, allow local users to cause a denial of service (processor fault) via unspecified vectors, a different vulnerability than CVE-2014-1891, CVE-2014-1892, and CVE-2014-1893.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*range: <=3.2.3
- cpe:2.3:o:xen:xen:3.0.2:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:3.0.3:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:3.0.4:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:3.1.3:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:3.1.4:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:3.2.1:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:3.2.2:*:*:*:*:*:*:*
- (no CPE)range: <=3.2.x
Patches
Vulnerability mechanics
References
8- xenbits.xen.org/xsa/advisory-84.htmlnvdPatchVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2014-03/msg00010.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2014-03/msg00011.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.htmlnvd
- security.gentoo.org/glsa/glsa-201407-03.xmlnvd
- www.openwall.com/lists/oss-security/2014/02/07/12nvd
- www.openwall.com/lists/oss-security/2014/02/07/4nvd
- www.openwall.com/lists/oss-security/2014/02/10/8nvd
News mentions
0No linked articles in our index yet.