What is the severity of CVE-2016-1571?

CVE-2016-1571 is classified as a high severity vulnerability that can lead to denial of service conditions on the host.

How do I fix CVE-2016-1571?

To fix CVE-2016-1571, users should upgrade to a fixed version of Xen that addresses this vulnerability.

Who is affected by CVE-2016-1571?

CVE-2016-1571 affects local HVM guest users of Xen versions from 3.3.x through 4.6.x who are using shadow mode paging or nested virtualization.

What type of attack does CVE-2016-1571 enable?

CVE-2016-1571 allows a local attacker to cause a denial of service by sending a non-canonical guest address in an INVVPID instruction.

Can CVE-2016-1571 crash the host?

Yes, CVE-2016-1571 can trigger a host crash through a denial of service due to improper handling of INVVPID instructions.

Vulnerability/
CVE-2016-1571

medium

6.3

CWE

22/1/2016

5/8/2024

CVE-2016-1571

First published: Fri Jan 22 2016(Updated: )

The paging_invlpg function in include/asm-x86/paging.h in Xen 3.3.x through 4.6.x, when using shadow mode paging or nested virtualization is enabled, allows local HVM guest users to cause a denial of service (host crash) via a non-canonical guest address in an INVVPID instruction, which triggers a hypervisor bug check.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
XenServer	<=6.5
Xen XAPI	=3.3.0
Xen XAPI	=3.3.1
Xen XAPI	=3.3.2
Xen XAPI	=3.4.0
Xen XAPI	=3.4.1
Xen XAPI	=3.4.2
Xen XAPI	=3.4.3
Xen XAPI	=3.4.4
Xen XAPI	=4.1.0
Xen XAPI	=4.1.1
Xen XAPI	=4.1.2
Xen XAPI	=4.1.3
Xen XAPI	=4.1.4
Xen XAPI	=4.1.5
Xen XAPI	=4.1.6
Xen XAPI	=4.1.6.1
Xen XAPI	=4.2.0
Xen XAPI	=4.2.1
Xen XAPI	=4.2.2
Xen XAPI	=4.2.3
Xen XAPI	=4.2.4
Xen XAPI	=4.2.5
Xen XAPI	=4.3.0
Xen XAPI	=4.3.1
Xen XAPI	=4.3.2
Xen XAPI	=4.3.3
Xen XAPI	=4.3.4
Xen XAPI	=4.4.0
Xen XAPI	=4.4.0-rc1
Xen XAPI	=4.4.1
Xen XAPI	=4.4.2
Xen XAPI	=4.4.3
Xen XAPI	=4.5.0
Xen XAPI	=4.5.1
Xen XAPI	=4.5.2
Xen XAPI	=4.6.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-1571?
CVE-2016-1571 is classified as a high severity vulnerability that can lead to denial of service conditions on the host.
How do I fix CVE-2016-1571?
To fix CVE-2016-1571, users should upgrade to a fixed version of Xen that addresses this vulnerability.
Who is affected by CVE-2016-1571?
CVE-2016-1571 affects local HVM guest users of Xen versions from 3.3.x through 4.6.x who are using shadow mode paging or nested virtualization.
What type of attack does CVE-2016-1571 enable?
CVE-2016-1571 allows a local attacker to cause a denial of service by sending a non-canonical guest address in an INVVPID instruction.
Can CVE-2016-1571 crash the host?
Yes, CVE-2016-1571 can trigger a host crash through a denial of service due to improper handling of INVVPID instructions.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/last-modified-date
agent/weakness
agent/description
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/citrix
canonical/xenserver
version/xenserver/6.5
vendor/xen
canonical/xen xapi
version/xen xapi/3.3.0
version/xen xapi/3.3.1
version/xen xapi/3.3.2
version/xen xapi/3.4.0
version/xen xapi/3.4.1
version/xen xapi/3.4.2
version/xen xapi/3.4.3
version/xen xapi/3.4.4
version/xen xapi/4.1.0
version/xen xapi/4.1.1
version/xen xapi/4.1.2
version/xen xapi/4.1.3
version/xen xapi/4.1.4
version/xen xapi/4.1.5
version/xen xapi/4.1.6
version/xen xapi/4.1.6.1
version/xen xapi/4.2.0
version/xen xapi/4.2.1
version/xen xapi/4.2.2
version/xen xapi/4.2.3
version/xen xapi/4.2.4
version/xen xapi/4.2.5
version/xen xapi/4.3.0
version/xen xapi/4.3.1
version/xen xapi/4.3.2
version/xen xapi/4.3.3
version/xen xapi/4.3.4
version/xen xapi/4.4.0
version/xen xapi/4.4.0-rc1
version/xen xapi/4.4.1
version/xen xapi/4.4.2
version/xen xapi/4.4.3
version/xen xapi/4.5.0
version/xen xapi/4.5.1
version/xen xapi/4.5.2
version/xen xapi/4.6.0