Input validation error in xen (Alpine package)

1) Input validation error

EUVDB-ID: #VU32261

Risk: Low

CVSSv4.0: 4.6 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2016-6259

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local non-authenticated attacker to perform a denial of service (DoS) attack.

Xen 4.5.x through 4.7.x do not implement Supervisor Mode Access Prevention (SMAP) whitelisting in 32-bit exception and event delivery, which allows local 32-bit PV guest OS kernels to cause a denial of service (hypervisor and VM crash) by triggering a safety check.

Mitigation

Install update from vendor's website.

Vulnerable software versions

xen (Alpine package): 4.5.0-r0 - 4.7.6-r0

xen (Alpine package):

CPE2.3

• cpe:2.3:o:alpine:xen_alpine_package:4.5.0-r0:*:*:*:*:alpine_linux:*:3.1
• cpe:2.3:o:alpine:xen_alpine_package:4.5.0-r1:*:*:*:*:alpine_linux:*:3.1
• cpe:2.3:o:alpine:xen_alpine_package:4.5.1-r0:*:*:*:*:alpine_linux:*:3.1
• cpe:2.3:o:alpine:xen_alpine_package::*:*:*:*:alpine_linux:*:*

External links

https://git.alpinelinux.org/aports/commit/?id=68368249e3421886c66d79df3bd184f6ff617041
https://git.alpinelinux.org/aports/commit/?id=59d51c1852e15d7d5e6d20ca1c5e19b137c2ea37
https://git.alpinelinux.org/aports/commit/?id=93cedf0264ea23d61efd07fa82126f2f9e375b20
https://git.alpinelinux.org/aports/commit/?id=d0a7fcca4e82f4ff531083fa762975ee6b0ec9f4

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.