CVE-2016-4480

8.4HIGH

Key Information:

Vendor: Oracle
Status: Vm Server
Vendor: CVE Published:; 18 May 2016

Summary

The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen 4.6.x and earlier does not properly handle the Page Size (PS) page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of memory.

References

http://www.oracle.com/technetwork/topics/security/ovmbull...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/90710

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1035901

vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 18, 2016
Vulnerability Reserved
May 3, 2016

.