1
Candidate: CVE-2016-1571
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1571
5
http://xenbits.xen.org/xsa/advisory-168.html
7
The paging_invlpg function in include/asm-x86/paging.h in Xen 3.3.x through
8
4.6.x, when using shadow mode paging or nested virtualization is enabled,
9
allows local HVM guest users to cause a denial of service (host crash) via
10
a non-canonical guest address in an INVVPID instruction, which triggers a
14
mdeslaur> hypervisor packages are in universe. For
15
mdeslaur> issues in the hypervisor, add appropriate
16
mdeslaur> tags to each section, ex:
17
mdeslaur> Tags_xen: universe-binary
20
Discovered-by: Jan Beulich
24
Tags_xen: universe-binary
26
precise_xen: released (4.1.6.1-0ubuntu0.12.04.10)
27
trusty_xen: released (4.4.2-0ubuntu0.14.04.5)
28
vivid_xen: ignored (reached end-of-life)
29
vivid/stable-phone-overlay_xen: DNE
30
vivid/ubuntu-core_xen: DNE
31
wily_xen: released (4.5.1-0ubuntu1.3)
32
devel_xen: released (4.6.0-1ubuntu4)