Lucene search

PRIOn knowledge basePRION:CVE-2016-7092

HistorySep 21, 2016 - 2:25 p.m.

Design/Logic Flaw

2016-09-2114:25:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.7%

JSON

The get_page_from_l3e function in arch/x86/mm.c in Xen allows local 32-bit PV guest OS administrators to gain host OS privileges via vectors related to L3 recursive pagetables.

References

support.citrix.com/article/CTX216071

www.debian.org/security/2016/dsa-3663

www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

www.securityfocus.com/bid/92862

www.securitytracker.com/id/1036751

xenbits.xen.org/xsa/advisory-185.html

xenbits.xen.org/xsa/xsa185.patch

security.gentoo.org/glsa/201611-09