8 matches found
SUSE CVE-2016-6258
The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries...
Citrix XenServer Multiple Vulnerabilities (CTX214954) (Bunker Buster)
The version of Citrix XenServer running on the remote host is missing a security hotfix. It is, therefore, affected by multiple vulnerabilities : - A privilege escalation vulnerability known as 'Bunker Buster' exists in the paravirtualization PV pagetable implementation due to incorrect usage of...
Xen Privilege Escalation (XSA-182) (Bunker Buster)
According to its self-reported version number, the remote Xen hypervisor is affected by a privilege escalation vulnerability in the paravirtualization PV pagetable implementation due to incorrect usage of fast-paths for making updates to pre-existing pagetable entries. An attacker with...
CVE-2016-6258
The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries...
Code injection
The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries...
CVE-2016-6258
The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries...
CVE-2016-6258
The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries...
xen-kernel -- x86: Privilege escalation in PV guests
The Xen Project reports: The PV pagetable code has fast-paths for making updates to pre-existing pagetable entries, to skip expensive re-validation in safe cases e.g. clearing only Access/Dirty bits. The bits considered safe were too broad, and not actually safe. A malicious PV guest administrato...