2 matches found
Debian Security Advisory DSA 3390-1 (xen - security update)
It was discovered that the code to validate level 2 page table entries is bypassed when certain conditions are satisfied. A malicious PV guest administrator can take advantage of this flaw to gain privileges via a crafted superpage mapping. OpenVAS Vulnerability Test $Id: deb3390.nasl 6609...
UBUNTU-CVE-2015-7835
The modl2entry function in arch/x86/mm.c in Xen 3.4 through 4.6.x does not properly validate level 2 page table entries, which allows local PV guest administrators to gain privileges via a crafted superpage mapping...