First published: Wed Sep 21 2016(Updated: )
Xen 4.5.3, 4.6.3, and 4.7.x allow local HVM guest OS administrators to overwrite hypervisor memory and consequently gain host OS privileges by leveraging mishandling of instruction pointer truncation during emulation.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Xen Xen | =4.5.3 | |
Xen Xen | =4.6.3 | |
Xen Xen | =4.7.0 |
http://xenbits.xen.org/xsa/xsa186-0001-x86-emulate-Correct-boundary-interactions-of-emulate.patch
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.