CVE-2016-9637

Published: Feb 16, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

The (1) ioport_read and (2) ioport_write functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vectors involving an out-of-range ioport access.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

94699

vdb-entry

x_refsource_BID

GLSA-201612-56

vendor-advisory

x_refsource_GENTOO

https://support.citrix.com/article/CTX219136

x_refsource_CONFIRM

[debian-lts-announce] 20180206 [SECURITY] [DLA 1270-1] xen security update

mailing-list

x_refsource_MLIST

http://xenbits.xen.org/xsa/advisory-199.html

x_refsource_CONFIRM

1037397

vdb-entry

x_refsource_SECTRACK

RHSA-2016:2963

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-9637

Description

Affected Products

References