Early Access — Mondoo Vulnerability Intelligence is currently in preview.
Xen and the Linux kernel through 4.5.x do not properly suppress hugetlbfs support in x86 PV guests, which allows local PV guest OS users to cause a denial of service (guest OS crash) by attempting to access a hugetlbfs mapped area.
3.11.0-12.193.12.0-1.33.12.0-2.53.12.0-2.73.12.0-3.83.12.0-3.93.12.0-4.103.12.0-4.123.12.0-5.133.12.0-7.15+89 more3.13.0-101.1484.2.0-16.194.2.0-17.214.2.0-19.234.3.0-1.104.3.0-2.114.3.0-5.164.3.0-6.174.3.0-7.184.4.0-10.254.4.0-11.26+16 more4.4.0-24.434.4.0-1002.24.4.0-1001.104.4.0-1003.34.8.0-36.36~16.04.13.19.0-18.18~14.04.13.19.0-20.20~14.04.13.19.0-21.21~14.04.13.19.0-22.22~14.04.13.19.0-23.24~14.04.13.19.0-25.26~14.04.13.19.0-26.28~14.04.13.19.0-28.30~14.04.13.19.0-30.33~14.04.13.19.0-30.34~14.04.1+16 more3.19.0-61.69~14.04.14.2.0-18.22~14.04.14.2.0-19.23~14.04.14.2.0-21.25~14.04.14.2.0-22.27~14.04.14.2.0-23.28~14.04.14.2.0-25.30~14.04.14.2.0-27.32~14.04.14.2.0-30.35~14.04.14.2.0-30.36~14.04.14.2.0-34.39~14.04.1+3 more4.2.0-38.45~14.04.14.4.0-13.29~14.04.14.4.0-14.30~14.04.24.4.0-15.31~14.04.14.4.0-18.34~14.04.14.4.0-21.37~14.04.14.4.0-22.39~14.04.14.4.0-22.40~14.04.14.4.0-24.43~14.04.14.2.0-1013.194.2.0-1014.214.3.0-1006.64.4.0-1003.44.4.0-1004.54.4.0-1009.104.4.0-1010.124.4.0-1010.134.4.0-1012.164.4.0-1012.124.4.0-1013.144.4.0-1013.154.4.0-1015.18Exploitability
AV:LAC:LPR:LUI:NScope
S:UImpact
C:NI:NA:HCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H