SB2016050940 - NULL pointer dereference in xen (Alpine package)
Published: May 9, 2016
Security Bulletin ID
SB2016050940
Severity
High
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) NULL pointer dereference (CVE-ID: CVE-2016-3960)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error in the x86 shadow pagetable code in Xen allows local guest OS users to cause a denial of service (host crash) or possibly gain privileges by shadowing a superpage mapping. <a href="http://cwe.mitre.org/data/definitions/476. A remote attacker can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.alpinelinux.org/aports/commit/?id=6ee4459a5f8f1757470b868e4874677e31fbb3fd
- https://git.alpinelinux.org/aports/commit/?id=2e04022d1a3fe8b9e3ff2e830cfeca39b4b610aa
- https://git.alpinelinux.org/aports/commit/?id=bc2fd89aabfb7b623b4c283950bb456c6724a931
- https://git.alpinelinux.org/aports/commit/?id=40a3ee6c24583c262a4a8390459526dc40832862