CVE 2016-6258
The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries.
Related bugs and status
CVE-2016-6258 (Candidate) is related to these bugs:
Bug #1396670: gdbsx missing
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1396670 | gdbsx missing | xen (Ubuntu) | Medium | Fix Released | ||
1396670 | gdbsx missing | xen (Ubuntu Yakkety) | Medium | Fix Released |
Bug #1606847: xsa-182 / CVE-2016-6258
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1606847 | xsa-182 / CVE-2016-6258 | xen (Ubuntu) | Undecided | Fix Released |
Bug #1671760: Xen HVM guests running linux 4.10 fail to boot on Intel hosts
Bug #1671864: Xen stable update to 4.6.5
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1671864 | Xen stable update to 4.6.5 | xen (Ubuntu) | Medium | Invalid | ||
1671864 | Xen stable update to 4.6.5 | xen (Ubuntu Xenial) | Medium | Fix Released |
Bug #1672767: Xen stable update to 4.7.2
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1672767 | Xen stable update to 4.7.2 | xen (Ubuntu) | Medium | Invalid | ||
1672767 | Xen stable update to 4.7.2 | xen (Ubuntu Yakkety) | Medium | Fix Released |
See the
CVE page on Mitre.org
for more details.