CVE-2016-3961: Input Validation
First published: Fri Apr 15 2016(Updated: )
Last updated 24 July 2024
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =15.10 | |
| Canonical Ubuntu Linux | =16.04 | |
| Xen Xen | <=4.5.3 | |
| debian/linux | 5.10.223-1 5.10.226-1 6.1.115-1 6.1.119-1 6.11.10-1 6.12.5-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.debian.org/security/2016/dsa-3607
- http://www.securityfocus.com/bid/86068
- http://www.securitytracker.com/id/1035569
- http://www.ubuntu.com/usn/USN-3001-1
- http://www.ubuntu.com/usn/USN-3002-1
- http://www.ubuntu.com/usn/USN-3003-1
- http://www.ubuntu.com/usn/USN-3004-1
- http://www.ubuntu.com/usn/USN-3005-1
- http://www.ubuntu.com/usn/USN-3006-1
- http://www.ubuntu.com/usn/USN-3007-1
- http://www.ubuntu.com/usn/USN-3049-1
- http://www.ubuntu.com/usn/USN-3050-1
- http://xenbits.xen.org/xsa/advisory-174.html
- http://xenbits.xen.org/xsa/xsa174.patch
- https://launchpad.net/bugs/cve/CVE-2016-3961
- http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=103f6112f253017d7062cd74d17f4a514ed4485c
- https://security-tracker.debian.org/tracker/CVE-2016-3961
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3961
- https://nvd.nist.gov/vuln/detail/CVE-2016-3961
- https://ubuntu.com/security/CVE-2016-3961
Frequently Asked Questions
What is the vulnerability ID of this vulnerability?
The vulnerability ID of this vulnerability is CVE-2016-3961.
What is the title of the vulnerability?
The title of the vulnerability is 'Xen and the Linux kernel through 4.5.x do not properly suppress hugetlbfs support in x86 PV guests'.
What is the description of the vulnerability?
The vulnerability allows local PV guest OS users to cause a denial of service (guest OS crash) by attempting to access a hugetlbfs mapped area.
How can I check if my system is affected by this vulnerability?
You can check if your system is affected by this vulnerability by verifying the Linux kernel version installed on your system.
How do I fix this vulnerability?
To fix this vulnerability, you need to update your Linux kernel to a version that includes the necessary security patches.
- collector/nvd-index
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/author
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/severity
- agent/weakness
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/remedy
- agent/description
- agent/first-publish-date
- agent/tags
- agent/event
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- agent/trending
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/15.10
- version/canonical ubuntu linux/16.04
- vendor/xen
- canonical/xen xen
- version/xen xen/4.5.3
- package-manager/debian