CVE-2016-3159 in Xeninfo

Zusammenfassung (Englisch)

The fpu_fxrstor function in arch/x86/i387.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-2076.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

15.03.2016

Veröffentlichung

13.04.2016

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

IDSchwachstelleCWEAusMasCVE
81556XenSource Xen erweiterte Rechte284Nicht definiertOffizieller FixCVE-2016-3159

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

ZurückÜbersichtWeiter

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!