UBUNTU-CVE-2016-5412
Advisory lineage Upstream: 1 Downstream: 4
Upstream
Downstream
Published: 06 Aug 2016, 00:00
Last modified:22 Apr 2026, 10:36
Vulnerability Summary
Overall Risk (default)
medium
26/100 CVSS Score
6.5 MEDIUM
3.0 (osv_ubuntu)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
06 Aug 2016, 00:00
Published
Vulnerability first disclosed
22 Apr 2026, 10:36
Last Modified
Vulnerability information updated
Description
arch/powerpc/kvm/book3s_hv_rmhandlers.S in the Linux kernel through 4.7 on PowerPC platforms, when CONFIG_KVM_BOOK3S_64_HV is enabled, allows guest OS users to cause a denial of service (host OS infinite loop) by making a H_CEDE hypercall during the existence of a suspended transaction.
CVSS Metrics
- v3.0•MEDIUM•Score: 6.5CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
Affected Systems
- ubuntu•linux
< 4.4.0-38.57
- ubuntu•linux-lts-xenial
< 4.4.0-38.57~14.04.1
- ubuntu•linux-raspi2
< 4.4.0-1023.29
- ubuntu•linux-snapdragon
< 4.4.0-1026.29
References (8)
- https://ubuntu.com/security/CVE-2016-5412
- https://marc.info/?l=kvm&m=146968629127349&w=2
- http://seclists.org/oss-sec/2016/q3/181
- https://ubuntu.com/security/notices/USN-3084-1
- https://ubuntu.com/security/notices/USN-3084-2
- https://ubuntu.com/security/notices/USN-3084-3
- https://ubuntu.com/security/notices/USN-3084-4
- https://www.cve.org/CVERecord?id=CVE-2016-5412