SB2016090808 - Fedora 25 update for xen
Published: September 8, 2016 Updated: April 24, 2025
Security Bulletin ID
SB2016090808
Severity
Medium
Patch available
YES
Number of vulnerabilities
3
Exploitation vector
Local access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 secuirty vulnerabilities.
1) Privilege escalation (CVE-ID: CVE-2016-7092)
The vulnerability allows local administrative user to get elevated privileges on the host system.The vulnerability exists due to entrying of L3 code in 64-bit hypervisor by administrative user of 32-bit PV that allows him to gain privileges on the target system.
Successful exploitation of this vulnerability will result in gaining elevated privileges by the guest attacker.
2) Access control error (CVE-ID: CVE-2016-7093)
The vulnerability allows local user to get elevated privileges on the host system.The vulnerability exists due to instruction pointer truncation error that allows a local administrative user on the HVM guest system to gain priviliges on the target system.
Successful exploitation of this vulnerability will result in gaining elevated privileges by the guest attacker.
3) Buffer overflow (CVE-ID: CVE-2016-7094)
The vulnerability allows a local privileged user to perform a denial of service (DoS) attack.
Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of service via a pagetable update.
Remediation
Install update from vendor's website.