CVE-2016-3157

Опубликовано: 16 мар. 2016

Источник: redhat

CVSS3: 7

CVSS2: 6.9

EPSS Низкий

Описание

The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel does not properly context-switch IOPL on 64-bit PV Xen guests, which allows local guest OS users to gain privileges, cause a denial of service (guest OS crash), or obtain sensitive information by leveraging I/O port access.

A flaw in the Linux kernel was found in the way IOPL was handled during context switches in 64-bit Xen PV guests. A local guest user could potentially use this flaw to escalate their privileges in the guest.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	kernel	Will not fix
Red Hat Enterprise Linux 6	kernel	Affected
Red Hat Enterprise Linux 7	kernel	Will not fix
Red Hat Enterprise Linux 7	kernel-alt	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Not affected
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise MRG 2	kernel-rt	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-250

https://bugzilla.redhat.com/show_bug.cgi?id=1315711kernel: xen: Privilege escalation on 64-bit Xen PV domains with IO port access privileges (XSA-171)

EPSS

Процентиль: 57%

0.00356

Низкий

7 High

CVSS3

6.9 Medium

CVSS2

Связанные уязвимости

CVE-2016-3157

CVSS3: 7.8

ubuntu

около 9 лет назад

CVE-2016-3157

CVSS3: 7.8

nvd

около 9 лет назад

CVE-2016-3157

CVSS3: 7.8

debian

около 9 лет назад

The __switch_to function in arch/x86/kernel/process_64.c in the Linux ...

GHSA-jpwx-jg65-3x5w

CVSS3: 7.8

github

около 3 лет назад

ELSA-2016-3657

oracle-oval

больше 8 лет назад

ELSA-2016-3657: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 57%

0.00356

Низкий

7 High

CVSS3

6.9 Medium

CVSS2