CVE-2014-0155
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2014-0155
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2014-0155.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2014-0155
- Downstream
- Related
- Published
- 2014-04-14T23:55:07Z
- Modified
- 2025-08-09T19:01:29Z
- Summary
- [none]
- Details
-
The ioapicdeliver function in virt/kvm/ioapic.c in the Linux kernel through 3.14.1 does not properly validate the kvmirqdeliverytoapic return value, which allows guest OS users to cause a denial of service (host OS crash) via a crafted entry in the redirection table of an I/O APIC. NOTE: the affected code was moved to the ioapicservice function before the vulnerability was announced.
- References