The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel does not properly context-switch IOPL on 64-bit PV Xen guests, which allows local guest OS users to gain privileges, cause a denial of service (guest OS crash), or obtain sensitive information by leveraging I/O port access.
References
Information
Published : 2016-04-12 09:59
Updated : 2016-12-02 19:26
NVD link : CVE-2016-3157
Mitre link : CVE-2016-3157
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
canonical
- ubuntu_linux
xen
- xen