Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2016-3158

Good to know:

icon

Date: April 13, 2016

The xrstor function in arch/x86/xstate.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-2076.

Language: C

Severity Score

Related Resources (13)

http://xenbits.xen.org/xsa/xsa172.patch
https://nvd.nist.gov/vuln/detail/CVE-2016-3158
http://www.securityfocus.com/bid/85714
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181729.html
http://support.citrix.com/article/CTX209443
http://www.securitytracker.com/id/1035435
http://xenbits.xen.org/xsa/advisory-172.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181699.html
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
https://security-tracker.debian.org/tracker/CVE-2016-3158
http://xenbits.xen.org/xsa/xsa172-4.3.patch
http://www.debian.org/security/2016/dsa-3554
https://www.mend.io/vulnerability-database/CVE-2016-3158

Severity Score

Weakness Type (CWE)

Improper Access Control

CWE-284

Exposure of Sensitive Information to an Unauthorized Actor

CWE-200

CVSS v3.1

Base Score:
Attack Vector (AV): LOCAL
Attack Complexity (AC): LOW
Privileges Required (PR): LOW
User Interaction (UI): NONE
Scope (S): CHANGED
Confidentiality (C): LOW
Integrity (I): NONE
Availability (A): NONE

CVSS v2

Base Score:
Access Vector (AV): LOCAL
Access Complexity (AC): LOW
Authentication (AU): SINGLE
Confidentiality (C): PARTIAL
Integrity (I): NONE
Availability (A): NONE
Additional information:

Do you need more information?

Contact Us