CVE-2016-3961
Ubuntu Security Notice USN-3002-1
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Xen and the Linux kernel through 4.5.x do not properly suppress hugetlbfs support in x86 PV guests, which allows local PV guest OS users to cause a denial of service (guest OS crash) by attempting to access a hugetlbfs mapped area.
Xen y el kernel de Linux hasta la versión 4.5.x no suprime adecuadamente el apoyo hugetlbfs en invitados x86 PV, lo que permite a usuarios PV locales invitados del SO provocar una denegación de servicio (caida de SO invitado) al intentar acceder a un área mapeada hugetlbfs.
Justin Yackoski discovered that the Atheros L2 Ethernet Driver in the Linux kernel incorrectly enables scatter/gather I/O. A remote attacker could use this to obtain potentially sensitive information from kernel memory. Jann Horn discovered that eCryptfs improperly attempted to use the mmap() handler of a lower filesystem that did not implement one, causing a recursive page fault to occur. A local unprivileged attacker could use to cause a denial of service (system crash) or possibly execute arbitrary code with administrative privileges. Various other issues were also addressed.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2016-04-05 CVE Reserved
- 2016-04-15 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (14)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/86068 | Vdb Entry | |
| http://www.securitytracker.com/id/1035569 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://xenbits.xen.org/xsa/xsa174.patch | 2016-11-28 |
| URL | Date | SRC |
|---|---|---|
| http://www.debian.org/security/2016/dsa-3607 | 2016-11-28 | |
| http://www.ubuntu.com/usn/USN-3001-1 | 2016-11-28 | |
| http://www.ubuntu.com/usn/USN-3002-1 | 2016-11-28 | |
| http://www.ubuntu.com/usn/USN-3003-1 | 2016-11-28 | |
| http://www.ubuntu.com/usn/USN-3004-1 | 2016-11-28 | |
| http://www.ubuntu.com/usn/USN-3005-1 | 2016-11-28 | |
| http://www.ubuntu.com/usn/USN-3006-1 | 2016-11-28 | |
| http://www.ubuntu.com/usn/USN-3007-1 | 2016-11-28 | |
| http://www.ubuntu.com/usn/USN-3049-1 | 2016-11-28 | |
| http://www.ubuntu.com/usn/USN-3050-1 | 2016-11-28 | |
| http://xenbits.xen.org/xsa/advisory-174.html | 2016-11-28 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 14.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "14.04" | lts |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 15.10 Search vendor "Canonical" for product "Ubuntu Linux" and version "15.10" | - |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 16.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "16.04" | lts |
Affected
| ||||||
| Xen Search vendor "Xen" | Xen Search vendor "Xen" for product "Xen" | <= 4.5.3 Search vendor "Xen" for product "Xen" and version " <= 4.5.3" | - |
Affected
| ||||||