Candidate: CVE-2016-4480
PublicDate: 2016-05-18 14:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4480
 http://xenbits.xen.org/xsa/advisory-176.html
Description:
 The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen 4.6.x and
 earlier does not properly handle the Page Size (PS) page table entry bit at
 the L4 and L3 page table levels, which might allow local guest OS users to
 gain privileges via a crafted mapping of memory.
Ubuntu-Description:
Notes:
Bugs:
 https://launchpad.net/bugs/1583960
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [8.4 HIGH]

Patches_xen:
Tags_xen: universe-binary
upstream_xen: needs-triage
precise_xen: released (4.1.6.1-0ubuntu0.12.04.11)
trusty_xen: released (4.4.2-0ubuntu0.14.04.6)
trusty/esm_xen: DNE (trusty was released [4.4.2-0ubuntu0.14.04.6])
vivid/ubuntu-core_xen: DNE
vivid/stable-phone-overlay_xen: DNE
wily_xen: released (4.5.1-0ubuntu1.4)
xenial_xen: released (4.6.0-1ubuntu4.1)
esm-infra/xenial_xen: released (4.6.0-1ubuntu4.1)
devel_xen: released (4.6.0-1ubuntu5)

Patches_linux:
upstream_linux: not-affected (not a kernel issue, it's a xen only issue)
precise_linux: not-affected (not a kernel issue, it's a xen only issue)
trusty_linux: not-affected (not a kernel issue, it's a xen only issue)
trusty/esm_linux: not-affected (not a kernel issue, it's a xen only issue)
vivid/ubuntu-core_linux: not-affected (not a kernel issue, it's a xen only issue)
vivid/stable-phone-overlay_linux: DNE
wily_linux: not-affected (not a kernel issue, it's a xen only issue)
xenial_linux: not-affected (not a kernel issue, it's a xen only issue)
esm-infra/xenial_linux: not-affected (not a kernel issue, it's a xen only issue)
devel_linux: not-affected (not a kernel issue, it's a xen only issue)

Patches_linux-ti-omap4:
upstream_linux-ti-omap4: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-ti-omap4: not-affected (not a kernel issue, it's a xen only issue)
trusty_linux-ti-omap4: DNE
trusty/esm_linux-ti-omap4: DNE
vivid/ubuntu-core_linux-ti-omap4: DNE
vivid/stable-phone-overlay_linux-ti-omap4: DNE
wily_linux-ti-omap4: DNE
xenial_linux-ti-omap4: DNE
devel_linux-ti-omap4: DNE

Patches_linux-linaro-omap:
upstream_linux-linaro-omap: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-linaro-omap: ignored (abandoned)
trusty_linux-linaro-omap: DNE
trusty/esm_linux-linaro-omap: DNE
vivid/ubuntu-core_linux-linaro-omap: DNE
vivid/stable-phone-overlay_linux-linaro-omap: DNE
wily_linux-linaro-omap: DNE
xenial_linux-linaro-omap: DNE
devel_linux-linaro-omap: DNE

Patches_linux-linaro-shared:
upstream_linux-linaro-shared: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-linaro-shared: ignored (abandoned)
trusty_linux-linaro-shared: DNE
trusty/esm_linux-linaro-shared: DNE
vivid/ubuntu-core_linux-linaro-shared: DNE
vivid/stable-phone-overlay_linux-linaro-shared: DNE
wily_linux-linaro-shared: DNE
xenial_linux-linaro-shared: DNE
devel_linux-linaro-shared: DNE

Patches_linux-linaro-vexpress:
upstream_linux-linaro-vexpress: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-linaro-vexpress: ignored (abandoned)
trusty_linux-linaro-vexpress: DNE
trusty/esm_linux-linaro-vexpress: DNE
vivid/ubuntu-core_linux-linaro-vexpress: DNE
vivid/stable-phone-overlay_linux-linaro-vexpress: DNE
wily_linux-linaro-vexpress: DNE
xenial_linux-linaro-vexpress: DNE
devel_linux-linaro-vexpress: DNE

Patches_linux-qcm-msm:
upstream_linux-qcm-msm: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-qcm-msm: ignored (abandoned)
trusty_linux-qcm-msm: DNE
trusty/esm_linux-qcm-msm: DNE
vivid/ubuntu-core_linux-qcm-msm: DNE
vivid/stable-phone-overlay_linux-qcm-msm: DNE
wily_linux-qcm-msm: DNE
xenial_linux-qcm-msm: DNE
devel_linux-qcm-msm: DNE

Tags_linux-armadaxp: not-ue
Patches_linux-armadaxp:
upstream_linux-armadaxp: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-armadaxp: not-affected (not a kernel issue, it's a xen only issue)
trusty_linux-armadaxp: DNE
trusty/esm_linux-armadaxp: DNE
vivid/ubuntu-core_linux-armadaxp: DNE
vivid/stable-phone-overlay_linux-armadaxp: DNE
wily_linux-armadaxp: DNE
xenial_linux-armadaxp: DNE
devel_linux-armadaxp: DNE

Tags_linux-lts-quantal: not-ue
Patches_linux-lts-quantal:
upstream_linux-lts-quantal: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-lts-quantal: ignored (end-of-life)
trusty_linux-lts-quantal: DNE
trusty/esm_linux-lts-quantal: DNE
vivid/ubuntu-core_linux-lts-quantal: DNE
vivid/stable-phone-overlay_linux-lts-quantal: DNE
wily_linux-lts-quantal: DNE
xenial_linux-lts-quantal: DNE
devel_linux-lts-quantal: DNE

Patches_linux-lts-raring:
upstream_linux-lts-raring: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-lts-raring: ignored (end-of-life)
trusty_linux-lts-raring: DNE
trusty/esm_linux-lts-raring: DNE
vivid/ubuntu-core_linux-lts-raring: DNE
vivid/stable-phone-overlay_linux-lts-raring: DNE
wily_linux-lts-raring: DNE
xenial_linux-lts-raring: DNE
devel_linux-lts-raring: DNE

Tags_linux-lts-saucy: not-ue
Patches_linux-lts-saucy:
upstream_linux-lts-saucy: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-lts-saucy: ignored (end-of-life)
trusty_linux-lts-saucy: DNE
trusty/esm_linux-lts-saucy: DNE
vivid/ubuntu-core_linux-lts-saucy: DNE
vivid/stable-phone-overlay_linux-lts-saucy: DNE
wily_linux-lts-saucy: DNE
xenial_linux-lts-saucy: DNE
devel_linux-lts-saucy: DNE

Patches_linux-lts-trusty:
upstream_linux-lts-trusty: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-lts-trusty: not-affected (not a kernel issue, it's a xen only issue)
trusty_linux-lts-trusty: DNE
trusty/esm_linux-lts-trusty: DNE
vivid/ubuntu-core_linux-lts-trusty: DNE
vivid/stable-phone-overlay_linux-lts-trusty: DNE
wily_linux-lts-trusty: DNE
xenial_linux-lts-trusty: DNE
devel_linux-lts-trusty: DNE

Patches_linux-goldfish:
upstream_linux-goldfish: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-goldfish: DNE
trusty_linux-goldfish: ignored
trusty/esm_linux-goldfish: DNE (trusty was ignored)
vivid/ubuntu-core_linux-goldfish: DNE
vivid/stable-phone-overlay_linux-goldfish: DNE
wily_linux-goldfish: not-affected (not a kernel issue, it's a xen only issue)
xenial_linux-goldfish: not-affected (not a kernel issue, it's a xen only issue)
devel_linux-goldfish: not-affected (not a kernel issue, it's a xen only issue)

Patches_linux-grouper:
upstream_linux-grouper: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-grouper: DNE
trusty_linux-grouper: ignored
trusty/esm_linux-grouper: DNE (trusty was ignored)
vivid/ubuntu-core_linux-grouper: DNE
vivid/stable-phone-overlay_linux-grouper: DNE
wily_linux-grouper: DNE
xenial_linux-grouper: DNE
devel_linux-grouper: DNE

Patches_linux-maguro:
upstream_linux-maguro: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-maguro: DNE
trusty_linux-maguro: ignored
trusty/esm_linux-maguro: DNE (trusty was ignored)
vivid/ubuntu-core_linux-maguro: DNE
vivid/stable-phone-overlay_linux-maguro: DNE
wily_linux-maguro: DNE
xenial_linux-maguro: DNE
devel_linux-maguro: DNE

Patches_linux-mako:
upstream_linux-mako: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-mako: DNE
trusty_linux-mako: ignored
trusty/esm_linux-mako: DNE (trusty was ignored)
vivid/ubuntu-core_linux-mako: DNE
vivid/stable-phone-overlay_linux-mako: not-affected
wily_linux-mako: not-affected (not a kernel issue, it's a xen only issue)
xenial_linux-mako: not-affected (not a kernel issue, it's a xen only issue)
devel_linux-mako: not-affected (not a kernel issue, it's a xen only issue)

Patches_linux-manta:
upstream_linux-manta: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-manta: DNE
trusty_linux-manta: ignored
trusty/esm_linux-manta: DNE (trusty was ignored)
vivid/ubuntu-core_linux-manta: DNE
vivid/stable-phone-overlay_linux-manta: DNE
wily_linux-manta: not-affected (not a kernel issue, it's a xen only issue)
xenial_linux-manta: DNE
devel_linux-manta: DNE

Patches_linux-flo:
upstream_linux-flo: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-flo: DNE
trusty_linux-flo: ignored
trusty/esm_linux-flo: DNE (trusty was ignored)
vivid/ubuntu-core_linux-flo: DNE
vivid/stable-phone-overlay_linux-flo: not-affected
wily_linux-flo: not-affected (not a kernel issue, it's a xen only issue)
xenial_linux-flo: not-affected (not a kernel issue, it's a xen only issue)
devel_linux-flo: not-affected (not a kernel issue, it's a xen only issue)

Patches_linux-raspi2:
upstream_linux-raspi2: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-raspi2: DNE
trusty_linux-raspi2: DNE
trusty/esm_linux-raspi2: DNE
vivid/ubuntu-core_linux-raspi2: not-affected (not a kernel issue, it's a xen only issue)
vivid/stable-phone-overlay_linux-raspi2: DNE
wily_linux-raspi2: not-affected (not a kernel issue, it's a xen only issue)
xenial_linux-raspi2: not-affected (not a kernel issue, it's a xen only issue)
devel_linux-raspi2: not-affected (not a kernel issue, it's a xen only issue)

Patches_linux-lts-utopic:
upstream_linux-lts-utopic: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-lts-utopic: DNE
trusty_linux-lts-utopic: not-affected (not a kernel issue, it's a xen only issue)
trusty/esm_linux-lts-utopic: DNE (trusty was not-affected [not a kernel issue, it's a xen only issue])
vivid/ubuntu-core_linux-lts-utopic: DNE
vivid/stable-phone-overlay_linux-lts-utopic: DNE
wily_linux-lts-utopic: DNE
xenial_linux-lts-utopic: DNE
devel_linux-lts-utopic: DNE

Patches_linux-lts-vivid:
upstream_linux-lts-vivid: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-lts-vivid: DNE
trusty_linux-lts-vivid: not-affected (not a kernel issue, it's a xen only issue)
trusty/esm_linux-lts-vivid: DNE (trusty was not-affected [not a kernel issue, it's a xen only issue])
vivid/ubuntu-core_linux-lts-vivid: DNE
vivid/stable-phone-overlay_linux-lts-vivid: DNE
wily_linux-lts-vivid: DNE
xenial_linux-lts-vivid: DNE
devel_linux-lts-vivid: DNE

Patches_linux-lts-wily:
upstream_linux-lts-wily: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-lts-wily: DNE
trusty_linux-lts-wily: not-affected (not a kernel issue, it's a xen only issue)
trusty/esm_linux-lts-wily: DNE (trusty was not-affected [not a kernel issue, it's a xen only issue])
vivid/ubuntu-core_linux-lts-wily: DNE
vivid/stable-phone-overlay_linux-lts-wily: DNE
wily_linux-lts-wily: DNE
xenial_linux-lts-wily: DNE
devel_linux-lts-wily: DNE

Patches_linux-lts-xenial:
upstream_linux-lts-xenial: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-lts-xenial: DNE
trusty_linux-lts-xenial: not-affected (not a kernel issue, it's a xen only issue)
trusty/esm_linux-lts-xenial: not-affected (not a kernel issue, it's a xen only issue)
vivid/ubuntu-core_linux-lts-xenial: DNE
vivid/stable-phone-overlay_linux-lts-xenial: DNE
wily_linux-lts-xenial: DNE
xenial_linux-lts-xenial: DNE
devel_linux-lts-xenial: DNE

Patches_linux-snapdragon:
upstream_linux-snapdragon: not-affected (not a kernel issue, it's a xen only issue)
precise_linux-snapdragon: DNE
trusty_linux-snapdragon: DNE
trusty/esm_linux-snapdragon: DNE
vivid/ubuntu-core_linux-snapdragon: DNE
vivid/stable-phone-overlay_linux-snapdragon: DNE
wily_linux-snapdragon: DNE
xenial_linux-snapdragon: not-affected (not a kernel issue, it's a xen only issue)
devel_linux-snapdragon: not-affected (not a kernel issue, it's a xen only issue)