CVE-2015-2151

Description

The x86 emulator in Xen 3.2.x through 4.5.x does not properly ignore segment overrides for instructions with register operands, which allows local guest users to obtain sensitive information, cause a denial of service (memory corruption), or possibly execute arbitrary code via unspecified vectors.

CVSS Metrics

• v2.0•HIGH•Score: 7.2AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 0.24%• Percentile: 47%

Techniques & Countermeasures

• CWE-264•Permissions, Privileges, and Access Controls

  Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.

Affected Systems

• debian•debian_linux

  7.0

• fedoraproject•fedora

  20 | 21 | 22

• xen•xen

  3.2.0 | 3.2.1 | 3.2.2 | 3.2.3 | 3.3.0 | 3.3.1 | 3.3.2 | 3.4.0 | 3.4.1 | 3.4.2 | 3.4.3 | 3.4.4 | 4.0.0 | 4.0.1 | 4.0.2 | 4.0.3 | 4.0.4 | 4.1.0 | 4.1.1 | 4.1.2 | 4.1.3 | 4.1.4 | 4.1.5 | 4.1.6.1 | 4.2.0 | 4.2.1 | 4.2.2 | 4.2.3 | 4.3.0 | 4.3.1 | 4.4.0 | 4.4.0:rc1 | 4.4.1 | 4.5.0

References (14)

• http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-423503.htm
• http://support.citrix.com/article/CTX200484
• http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152776.html
• http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152588.html
• http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
• http://xenbits.xen.org/xsa/advisory-123.html
• http://www.securitytracker.com/id/1031903
• http://www.debian.org/security/2015/dsa-3181
• http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761
• http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152483.html
• http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00014.html
• https://security.gentoo.org/glsa/201604-03
• http://www.securityfocus.com/bid/73015
• http://www.securitytracker.com/id/1031806