Detections
Analytics

OracleVM 3.4 : xen (OVMSA-2016-0164)

high Nessus Plugin ID 95278

Language:

Synopsis

The remote OracleVM host is missing one or more security updates.

Description

The remote OracleVM system is missing necessary patches to address critical security updates :

 - BUILDINFO:
 commit=5e4dc2c5fbd14b065234c0b5e5b637e0e005fab7

 - pygrub: Properly quote results, when returning them to the caller: (Ian Jackson) [Orabug: 25094263] (CVE-2016-9379) (CVE-2016-9380)

 - x86emul: fix huge bit offset handling (Jan Beulich) [Orabug: 25088366] (CVE-2016-9383)

 - x86/PV: writes of %fs and %gs base MSRs require canonical addresses (Jan Beulich) [Orabug: 25087576] (CVE-2016-9385)

 - x86/HVM: don't load LDTR with VM86 mode attrs during task switch (Jan Beulich) [Orabug: 25087539] (CVE-2016-9382)

 - x86/hvm: Fix the handling of non-present segments (Andrew Cooper) [Orabug: 25087515] (CVE-2016-9386)

 - BUILDINFO:
 commit=286bb9711e33d92767e8608bea4d3da6dbeeb710

 - move TLB-flush filtering out into populate_physmap during vm creation (Dongli Zhang) [Orabug: 24951888]

 - replace tlbflush check and operation with inline functions (Dongli Zhang) [Orabug: 24951888]

 - x86/hvm: extend HVM cpuid leaf with vcpu id (Paul Durrant) - x86/hvm: add HVM-specific hypervisor CPUID leaf (Boris Ostrovsky) - xend: soft_reset support.
 (Konrad Rzeszutek Wilk) - (lib)xl: soft reset support (Vitaly Kuznetsov) - tools/libxl: Save and restore EMULATOR_XENSTORE_DATA content (Andrew Cooper) - libxl:
 introduce libxl__device_model_xs_path (Wei Liu) - libxl:
 add LIBXL_DEVICE_MODEL_SAVE_FILE (Vitaly Kuznetsov) - libxc: support XEN_DOMCTL_soft_reset operation (Vitaly Kuznetsov) - arch-specific hooks for domain_soft_reset (Vitaly Kuznetsov) - flask: DOMCTL_soft_reset support (Vitaly Kuznetsov) - introduce XEN_DOMCTL_soft_reset (Vitaly Kuznetsov) - evtchn: make evtchn_reset ready for soft reset (Vitaly Kuznetsov) - evtchn: make EVTCHNOP_reset suitable for kexec (Vitaly Kuznetsov) - xl: introduce enum domain_restart_type (Vitaly Kuznetsov) - libxl: support SHUTDOWN_soft_reset shutdown reason (Vitaly Kuznetsov) - introduce SHUTDOWN_soft_reset shutdown reason (Vitaly Kuznetsov) - x86emul: honor guest CR0.TS and CR0.EM (Jan Beulich) [Orabug: 24697001] (CVE-2016-7777)

Solution

Update the affected xen / xen-tools packages.

See Also

http://www.nessus.org/u?07deecef

Plugin Details

Severity: High

ID: 95278

File Name: oraclevm_OVMSA-2016-0164.nasl

Version: 3.17

Type: local

Published: 11/23/2016

Updated: 1/4/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.5

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 5.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:oracle:vm:xen, p-cpe:/a:oracle:vm:xen-tools, cpe:/o:oracle:vm_server:3.4

Required KB Items: Host/local_checks_enabled, Host/OracleVM/release, Host/OracleVM/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 11/22/2016

Vulnerability Publication Date: 10/7/2016

Reference Information

CVE: CVE-2016-7777, CVE-2016-9379, CVE-2016-9380, CVE-2016-9382, CVE-2016-9383, CVE-2016-9385, CVE-2016-9386