Improper initialization in OpenBSD - #VU14206
Published: August 7, 2018
Vulnerability identifier: #VU14206
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: N/A
CWE-ID: CWE-665
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: OpenBSD
Affected software:
OpenBSD
OpenBSD
Detailed vulnerability description
The vulnerability allows a remote attacker to cause DoS condition on the target system.
The weakness exists due to incorrect initialization of the FPU. A remote attacker can trigger floating point exceptions when the affected software is running on Xen and cause the service to crash.
The weakness exists due to incorrect initialization of the FPU. A remote attacker can trigger floating point exceptions when the affected software is running on Xen and cause the service to crash.
Remediation
Update to version 6.2.