CVE-2013-4368

Priority
Description
The outs instruction emulation in Xen 3.1.x, 4.2.x, 4.3.x, and earlier,
when using FS: or GS: segment override, uses an uninitialized variable as a
segment base, which allows local 64-bit PV guests to obtain sensitive
information (hypervisor stack content) via unspecified vectors related to
stale data in a segment register.
Notes
 mdeslaur> This is XSA-67
Package
Source: xen (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):released (4.3.0-1ubuntu2)
Package
Upstream:ignored (reached end-of-life)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
More Information

Updated: 2019-03-19 12:12:24 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)