UBUNTU-CVE-2016-7777

Source
https://ubuntu.com/security/CVE-2016-7777
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2016/UBUNTU-CVE-2016-7777.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2016-7777
Related
Published
2016-10-07T14:59:00Z
Modified
2016-10-07T14:59:00Z
Severity
  • 6.3 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N CVSS Calculator
Summary
[none]
Details

Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it.

References

Affected packages

Ubuntu:14.04:LTS / xen

Package

Name
xen
Purl
pkg:deb/ubuntu/xen?arch=src?distro=trusty

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.2-0ubuntu0.14.04.7

Affected versions

4.*

4.3.0-1ubuntu1
4.3.0-1ubuntu2
4.3.0-1ubuntu3
4.3.0-1ubuntu4
4.3.0-1ubuntu5
4.4.0-0ubuntu3
4.4.0-0ubuntu4
4.4.0-0ubuntu5
4.4.0-0ubuntu5.1
4.4.0-0ubuntu5.2
4.4.1-0ubuntu0.14.04.1
4.4.1-0ubuntu0.14.04.2
4.4.1-0ubuntu0.14.04.3
4.4.1-0ubuntu0.14.04.4
4.4.1-0ubuntu0.14.04.5
4.4.1-0ubuntu0.14.04.6
4.4.2-0ubuntu0.14.04.1
4.4.2-0ubuntu0.14.04.2
4.4.2-0ubuntu0.14.04.3
4.4.2-0ubuntu0.14.04.4
4.4.2-0ubuntu0.14.04.5
4.4.2-0ubuntu0.14.04.6

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "libxen-4.4"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "libxen-4.4-dbgsym"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "libxen-dev"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "libxen-ocaml"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "libxen-ocaml-dbgsym"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "libxen-ocaml-dev"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "libxenstore3.0"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "libxenstore3.0-dbgsym"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xen-hypervisor-4.1-amd64"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xen-hypervisor-4.3-amd64"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xen-hypervisor-4.3-armhf"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xen-hypervisor-4.4-amd64"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xen-hypervisor-4.4-arm64"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xen-hypervisor-4.4-armhf"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xen-system-amd64"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xen-system-arm64"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xen-system-armhf"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xen-utils-4.4"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xen-utils-4.4-dbgsym"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xen-utils-common"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xenstore-utils"
        },
        {
            "binary_version": "4.4.2-0ubuntu0.14.04.7",
            "binary_name": "xenstore-utils-dbgsym"
        }
    ]
}

Ubuntu:16.04:LTS / xen

Package

Name
xen
Purl
pkg:deb/ubuntu/xen?arch=src?distro=xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.6.0-1ubuntu4.2

Affected versions

4.*

4.5.1-0ubuntu1
4.5.1-0ubuntu2
4.6.0-1ubuntu1
4.6.0-1ubuntu2
4.6.0-1ubuntu4
4.6.0-1ubuntu4.1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "libxen-4.6"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "libxen-4.6-dbgsym"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "libxen-dev"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "libxenstore3.0"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "libxenstore3.0-dbgsym"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-hypervisor-4.4-amd64"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-hypervisor-4.4-arm64"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-hypervisor-4.4-armhf"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-hypervisor-4.5-amd64"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-hypervisor-4.5-arm64"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-hypervisor-4.5-armhf"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-hypervisor-4.6-amd64"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-hypervisor-4.6-arm64"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-hypervisor-4.6-armhf"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-system-amd64"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-system-arm64"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-system-armhf"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-utils-4.6"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-utils-4.6-dbgsym"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xen-utils-common"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xenstore-utils"
        },
        {
            "binary_version": "4.6.0-1ubuntu4.2",
            "binary_name": "xenstore-utils-dbgsym"
        }
    ]
}