CVE 2016-3960
Integer overflow in the x86 shadow pagetable code in Xen allows local guest OS users to cause a denial of service (host crash) or possibly gain privileges by shadowing a superpage mapping.
Related bugs and status
CVE-2016-3960 (Candidate) is related to these bugs:
Bug #1581420: CVE-2016-3960 / XSA-173
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1581420 | CVE-2016-3960 / XSA-173 | xen (Ubuntu) | Medium | Fix Released | ||
1581420 | CVE-2016-3960 / XSA-173 | xen (Ubuntu Precise) | Medium | Fix Released | ||
1581420 | CVE-2016-3960 / XSA-173 | xen (Ubuntu Trusty) | Medium | Fix Released | ||
1581420 | CVE-2016-3960 / XSA-173 | xen (Ubuntu Xenial) | Medium | Fix Released | ||
1581420 | CVE-2016-3960 / XSA-173 | xen (Ubuntu Wily) | Medium | Fix Released |
Bug #1671760: Xen HVM guests running linux 4.10 fail to boot on Intel hosts
Bug #1671864: Xen stable update to 4.6.5
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1671864 | Xen stable update to 4.6.5 | xen (Ubuntu) | Medium | Invalid | ||
1671864 | Xen stable update to 4.6.5 | xen (Ubuntu Xenial) | Medium | Fix Released |
See the
CVE page on Mitre.org
for more details.