FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 20:48:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
942433db-c661-11e6-ae1b-002590263bf5	xen-kernel -- x86: Mishandling of SYSCALL singlestep during emulation The Xen Project reports: The typical behaviour of singlestepping exceptions is determined at the start of the instruction, with a #DB trap being raised at the end of the instruction. SYSCALL (and SYSRET, although we don't implement it) behave differently because the typical behaviour allows userspace to escalate its privilege. (This difference in behaviour seems to be undocumented.) Xen wrongly raised the exception based on the flags at the start of the instruction. Guest userspace which can invoke the instruction emulator can use this flaw to escalate its privilege to that of the guest kernel. Discovery 2016-12-19 Entry 2016-12-20 xen-kernel < 4.7.1_2 CVE-2016-10013 http://xenbits.xen.org/xsa/advisory-204.html

VuXML ID

Description

942433db-c661-11e6-ae1b-002590263bf5

xen-kernel -- x86: Mishandling of SYSCALL singlestep during emulation

The Xen Project reports:

The typical behaviour of singlestepping exceptions is determined at the start of the instruction, with a #DB trap being raised at the end of the instruction. SYSCALL (and SYSRET, although we don't implement it) behave differently because the typical behaviour allows userspace to escalate its privilege. (This difference in behaviour seems to be undocumented.) Xen wrongly raised the exception based on the flags at the start of the instruction.

Guest userspace which can invoke the instruction emulator can use this flaw to escalate its privilege to that of the guest kernel.

Discovery 2016-12-19
Entry 2016-12-20
xen-kernel

< 4.7.1_2

CVE-2016-10013
http://xenbits.xen.org/xsa/advisory-204.html