Race condition in QEMU in Xen allows local x86 HVM guest OS administrators to gain privileges by changing certain data on shared rings, aka a "double fetch" vulnerability.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/94476 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1037344 | Third Party Advisory VDB Entry |
http://xenbits.xen.org/xsa/advisory-197.html | Third Party Advisory |
https://security.gentoo.org/glsa/201612-56 | Third Party Advisory |
https://support.citrix.com/article/CTX218775 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2017-01-23 21:59
Updated : 2024-02-28 15:44
NVD link : CVE-2016-9381
Mitre link : CVE-2016-9381
CVE.ORG link : CVE-2016-9381
JSON object : View
Products Affected
citrix
- xenserver
qemu
- qemu
CWE
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')