*** This bug is a security vulnerability ***
Public security bug reported:
The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen 4.6.x
and earlier does not properly handle the Page Size (PS) page table entry
bit at the L4 and L3 page table levels, which might allow local guest OS
users to gain privileges via a crafted mapping of memory.
** Affects: linux (Ubuntu)
Importance: Low
Status: New
** Affects: linux-armadaxp (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-flo (Ubuntu)
Importance: Low
Status: New
** Affects: linux-goldfish (Ubuntu)
Importance: Low
Status: New
** Affects: linux-lts-quantal (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-raring (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-saucy (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-trusty (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-utopic (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-vivid (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-wily (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-lts-xenial (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-mako (Ubuntu)
Importance: Low
Status: New
** Affects: linux-manta (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux-raspi2 (Ubuntu)
Importance: Low
Status: New
** Affects: linux-snapdragon (Ubuntu)
Importance: Low
Status: New
** Affects: linux-ti-omap4 (Ubuntu)
Importance: Low
Status: Invalid
** Affects: linux (Ubuntu Precise)
Importance: Low
Status: New
** Affects: linux-armadaxp (Ubuntu Precise)
Importance: Low
Status: New
** Affects: linux-flo (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-goldfish (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-quantal (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-raring (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-saucy (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-trusty (Ubuntu Precise)
Importance: Low
Status: New
** Affects: linux-lts-utopic (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-vivid (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-wily (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-lts-xenial (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-mako (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-manta (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-raspi2 (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-snapdragon (Ubuntu Precise)
Importance: Low
Status: Invalid
** Affects: linux-ti-omap4 (Ubuntu Precise)
Importance: Low
Status: New
** Affects: linux (Ubuntu Trusty)
Importance: Low
Status: New
** Affects: linux-armadaxp (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-flo (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-goldfish (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-lts-quantal (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-lts-raring (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-lts-saucy (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-lts-trusty (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-lts-utopic (Ubuntu Trusty)
Importance: Low
Status: New
** Affects: linux-lts-vivid (Ubuntu Trusty)
Importance: Low
Status: New
** Affects: linux-lts-wily (Ubuntu Trusty)
Importance: Low
Status: New
** Affects: linux-lts-xenial (Ubuntu Trusty)
Importance: Low
Status: New
** Affects: linux-mako (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-manta (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-raspi2 (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-snapdragon (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux-ti-omap4 (Ubuntu Trusty)
Importance: Low
Status: Invalid
** Affects: linux (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-armadaxp (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-flo (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-goldfish (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-quantal (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-raring (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-saucy (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-trusty (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-utopic (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-vivid (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-wily (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-lts-xenial (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-mako (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-manta (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-raspi2 (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-snapdragon (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux-ti-omap4 (Ubuntu Vivid)
Importance: Undecided
Status: New
** Affects: linux (Ubuntu Wily)
Importance: Low
Status: New
** Affects: linux-armadaxp (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-flo (Ubuntu Wily)
Importance: Low
Status: New
** Affects: linux-goldfish (Ubuntu Wily)
Importance: Low
Status: New
** Affects: linux-lts-quantal (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-raring (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-saucy (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-trusty (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-utopic (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-vivid (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-wily (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-lts-xenial (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-mako (Ubuntu Wily)
Importance: Low
Status: New
** Affects: linux-manta (Ubuntu Wily)
Importance: Low
Status: New
** Affects: linux-raspi2 (Ubuntu Wily)
Importance: Low
Status: New
** Affects: linux-snapdragon (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux-ti-omap4 (Ubuntu Wily)
Importance: Low
Status: Invalid
** Affects: linux (Ubuntu Xenial)
Importance: Low
Status: New
** Affects: linux-armadaxp (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-flo (Ubuntu Xenial)
Importance: Low
Status: New
** Affects: linux-goldfish (Ubuntu Xenial)
Importance: Low
Status: New
** Affects: linux-lts-quantal (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-raring (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-saucy (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-trusty (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-utopic (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-vivid (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-wily (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-lts-xenial (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-mako (Ubuntu Xenial)
Importance: Low
Status: New
** Affects: linux-manta (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux-raspi2 (Ubuntu Xenial)
Importance: Low
Status: New
** Affects: linux-snapdragon (Ubuntu Xenial)
Importance: Low
Status: New
** Affects: linux-ti-omap4 (Ubuntu Xenial)
Importance: Low
Status: Invalid
** Affects: linux (Ubuntu Yakkety)
Importance: Low
Status: New
** Affects: linux-armadaxp (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-flo (Ubuntu Yakkety)
Importance: Low
Status: New
** Affects: linux-goldfish (Ubuntu Yakkety)
Importance: Low
Status: New
** Affects: linux-lts-quantal (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-raring (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-saucy (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-trusty (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-utopic (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-vivid (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-wily (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-lts-xenial (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-mako (Ubuntu Yakkety)
Importance: Low
Status: New
** Affects: linux-manta (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Affects: linux-raspi2 (Ubuntu Yakkety)
Importance: Low
Status: New
** Affects: linux-snapdragon (Ubuntu Yakkety)
Importance: Low
Status: New
** Affects: linux-ti-omap4 (Ubuntu Yakkety)
Importance: Low
Status: Invalid
** Tags: kernel-cve-tracking-bug
** Tags added: kernel-cve-tracking-bug
** Information type changed from Public to Public Security
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-4480
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1583960
Title:
CVE-2016-4480
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1583960/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
