Lucene search

PRIOn knowledge basePRION:CVE-2016-3961

HistoryApr 15, 2016 - 2:59 p.m.

Design/Logic Flaw

2016-04-1514:59:00

PRIOn knowledge base

www.prio-n.com

6.4 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

28.1%

JSON

Xen and the Linux kernel through 4.5.x do not properly suppress hugetlbfs support in x86 PV guests, which allows local PV guest OS users to cause a denial of service (guest OS crash) by attempting to access a hugetlbfs mapped area.

CPENameOperatorVersion
ubuntu_linuxeq16.04
ubuntu_linuxeq15.10
ubuntu_linuxeq14.04
xenle4.5.3

Name	Operator	Version
ubuntu_linux	eq	16.04
ubuntu_linux	eq	15.10
ubuntu_linux	eq	14.04
xen	le	4.5.3

References

www.debian.org/security/2016/dsa-3607

www.securityfocus.com/bid/86068

www.securitytracker.com/id/1035569

www.ubuntu.com/usn/USN-3001-1

www.ubuntu.com/usn/USN-3002-1

www.ubuntu.com/usn/USN-3003-1

www.ubuntu.com/usn/USN-3004-1

www.ubuntu.com/usn/USN-3005-1

www.ubuntu.com/usn/USN-3006-1

www.ubuntu.com/usn/USN-3007-1

www.ubuntu.com/usn/USN-3049-1

www.ubuntu.com/usn/USN-3050-1

xenbits.xen.org/xsa/advisory-174.html

xenbits.xen.org/xsa/xsa174.patch