CVE 2016-9382
Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode.
Related bugs and status
CVE-2016-9382 (Candidate) is related to these bugs:
Bug #1396670: gdbsx missing
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1396670 | gdbsx missing | xen (Ubuntu) | Medium | Fix Released | ||
1396670 | gdbsx missing | xen (Ubuntu Yakkety) | Medium | Fix Released |
Bug #1671760: Xen HVM guests running linux 4.10 fail to boot on Intel hosts
Bug #1671864: Xen stable update to 4.6.5
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1671864 | Xen stable update to 4.6.5 | xen (Ubuntu) | Medium | Invalid | ||
1671864 | Xen stable update to 4.6.5 | xen (Ubuntu Xenial) | Medium | Fix Released |
Bug #1672767: Xen stable update to 4.7.2
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1672767 | Xen stable update to 4.7.2 | xen (Ubuntu) | Medium | Invalid | ||
1672767 | Xen stable update to 4.7.2 | xen (Ubuntu Yakkety) | Medium | Fix Released |
See the
CVE page on Mitre.org
for more details.