Early Access — Mondoo Vulnerability Intelligence is currently in preview.
The make_response function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS (or other guest OS) kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interface response structures, aka XSA-216.
4.13.0-16.196.5.0-9.96.8.0-31.313.11.0-12.193.12.0-1.33.12.0-2.53.12.0-2.73.12.0-3.83.12.0-3.93.12.0-4.103.12.0-4.123.12.0-5.133.12.0-7.15+112 more3.13.0-135.1845.3.0-18.195.3.0-24.265.4.0-9.124.2.0-16.194.2.0-17.214.2.0-19.234.3.0-1.104.3.0-2.114.3.0-5.164.3.0-6.174.3.0-7.184.4.0-10.254.4.0-11.26+52 more4.4.0-98.1215.13.0-19.195.3.0-1003.35.3.0-1008.95.3.0-1009.105.3.0-1010.115.4.0-1005.54.4.0-1001.104.4.0-1003.124.4.0-1004.134.4.0-1007.164.4.0-1009.184.4.0-1011.204.4.0-1012.214.4.0-1013.224.4.0-1016.254.4.0-1017.26+11 more4.4.0-1039.485.13.0-1005.66.8.0-1008.86.5.0-1008.84.4.0-1002.24.15.0-1001.15.0.0-1021.24~18.04.15.11.0-1009.9~20.04.25.13.0-1008.9~20.04.25.15.0-1014.18~20.04.15.15.0-1015.19~20.04.15.3.0-1016.17~18.04.15.4.0-1018.18~18.04.15.4.0-1020.20~18.04.25.8.0-1035.37~20.04.16.5.0-1008.8~22.04.16.8.0-1009.9~22.04.24.15.0-2000.44.15.0-2000.45.15.0-1042.47+fips15.4.0-1021.21+fips25.15.0-1042.47+fips15.15.0-1051.56+fips15.15.0-1051.56+fips15.15.0-1052.57+fips15.15.0-1051.56+fips15.4.0-1021.21+fips24.15.0-1030.31~16.04.14.15.0-1031.33~16.04.15.13.0-1006.74.11.0-1009.94.11.0-1011.114.11.0-1013.134.11.0-1014.144.11.0-1015.154.15.0-1002.25.3.0-1003.35.3.0-1008.95.3.0-1009.105.4.0-1006.66.5.0-1007.76.8.0-1007.74.15.0-1023.24~14.04.14.15.0-1082.925.11.0-1007.7~20.04.25.13.0-1009.10~20.04.25.15.0-1007.8~20.04.15.3.0-1007.8~18.04.15.4.0-1020.20~18.04.15.4.0-1022.22~18.04.15.8.0-1033.35~20.04.16.5.0-1007.7~22.04.16.8.0-1008.8~22.04.15.15.0-1019.24.15.15.0-1019.24~20.04.1.15.15.0-1053.61+fips15.4.0-1022.22+fips15.15.0-1053.61+fips15.15.0-1058.66+fips14.15.0-1002.24.15.0-1002.25.4.0-1022.22+fips15.15.0-1011.135.4.0-1007.105.4.0-1011.144.15.0-1005.85.4.0-1007.84.15.0-1027.325.15.0-73.80+fips15.15.0-92.102+fips15.4.0-1026.305.15.0-73.80+fips14.4.0-1003.34.15.0-1011.125.13.0-1005.66.8.0-1007.75.3.0-1004.45.3.0-1009.105.3.0-1011.125.4.0-1005.54.10.0-1004.44.10.0-1006.64.10.0-1007.74.10.0-1008.86.5.0-1007.74.15.0-1001.14.15.0-1071.815.11.0-1009.10~20.04.15.13.0-1008.9~20.04.35.15.0-1006.9~20.04.15.3.0-1008.9~18.04.15.4.0-1019.19~18.04.25.4.0-1021.21~18.04.15.8.0-1032.34~20.04.16.5.0-1010.10~22.04.36.8.0-1010.11~22.04.15.4.0-1021.21+fips15.15.0-1048.56+fips15.15.0-1048.56+fips14.15.0-1001.14.15.0-2013.145.4.0-1021.21+fips15.15.0-1002.25.4.0-1033.354.4.0-1003.34.4.0-1005.64.4.0-1006.64.4.0-1008.84.4.0-1009.94.4.0-1010.104.4.0-1012.124.4.0-1013.134.4.0-1014.144.4.0-1016.16+8 more4.4.0-1033.336.8.0-1003.54.15.0-1030.325.0.0-1011.11~18.04.15.3.0-1011.12~18.04.15.4.0-1025.25~18.04.15.15.0-1001.26.8.0-1001.35.4.0-1008.95.15.0-1003.5~20.04.25.4.0-1001.14.18.0-13.14~18.04.14.10.0-27.30~16.04.24.10.0-28.32~16.04.24.10.0-30.34~16.04.14.10.0-32.36~16.04.14.10.0-33.37~16.04.14.10.0-35.39~16.04.14.10.0-37.41~16.04.14.10.0-38.42~16.04.14.10.0-40.44~16.04.14.10.0-42.46~16.04.1+16 more4.13.0-32.35~16.04.15.11.0-22.23~20.04.15.13.0-21.21~20.04.15.15.0-33.34~20.04.15.4.0-37.41~18.04.15.8.0-23.24~20.04.16.5.0-14.14~22.04.16.8.0-38.38~22.04.15.0.0-15.16~18.04.15.4.0-1003.45.4.0-1004.56.5.0-1009.95.15.0-1002.25.15.0-1033.36~20.04.15.15.0-1034.37~20.04.15.4.0-1010.11~18.04.25.13.0-1007.75.15.0-1073.755.15.0-1021.265.15.0-1004.65.15.0-1003.5~20.04.15.4.0-1001.35.13.0-1004.44.4.0-1004.94.4.0-1007.124.4.0-1008.134.4.0-1009.145.3.0-1003.35.3.0-1008.95.3.0-1009.105.4.0-1004.44.15.0-1002.26.5.0-9.9.16.8.0-31.31.15.15.0-22.225.15.0-33.34~20.04.16.5.0-14.14.1~22.04.16.8.0-38.38.1~22.04.24.4.0-13.29~14.04.14.4.0-14.30~14.04.24.4.0-15.31~14.04.14.4.0-18.34~14.04.14.4.0-21.37~14.04.14.4.0-22.39~14.04.14.4.0-22.40~14.04.14.4.0-24.43~14.04.14.4.0-28.47~14.04.14.4.0-31.50~14.04.1+30 more4.4.0-98.121~14.04.16.8.0-1007.75.15.0-1005.56.2.0-1003.3~22.04.16.5.0-1004.46.8.0-1008.8~22.04.16.8.0-1009.9.14.15.0-1002.34.13.0-1008.95.10.0-1008.95.13.0-1009.105.14.0-1004.45.17.0-1003.35.6.0-1007.76.0.0-1006.66.11.0-1007.76.5.0-1003.36.8.0-1003.35.0.0-1010.114.15.0-1007.9~16.04.14.15.0-1008.10~16.04.15.3.0-1002.25.3.0-1007.85.3.0-1008.95.4.0-1005.55.13.0-1008.106.5.0-1010.106.8.0-1005.54.15.0-1007.94.15.0-1008.105.0.0-1007.12~18.04.15.11.0-1008.8~20.04.15.13.0-1011.13~20.04.25.15.0-1007.9~20.04.15.3.0-1011.12~18.04.15.4.0-1019.19~18.04.15.4.0-1021.21~18.04.15.8.0-1031.32~20.04.26.5.0-1013.13~22.04.46.8.0-1006.6~22.04.36.8.0-1004.45.13.0-1008.96.5.0-1005.75.4.0-1007.75.4.0-1013.13~18.04.16.7.0-2001.16.8.0-2019.204.13.0-1005.54.2.0-1013.194.2.0-1014.214.3.0-1006.64.4.0-1003.44.4.0-1004.54.4.0-1009.104.4.0-1010.124.4.0-1010.134.4.0-1012.164.4.0-1016.22+28 more4.4.0-1076.845.3.0-1007.85.3.0-1014.165.3.0-1015.175.3.0-1017.195.4.0-1004.45.3.0-1007.85.3.0-1014.165.3.0-1015.175.3.0-1017.195.4.0-1004.45.4.0-1006.65.3.0-1017.19~18.04.16.11.0-1001.15.15.0-1006.66.8.0-1008.195.15.0-1032.356.8.1-1015.166.5.0-9.9.15.4.0-24.286.8.0-31.31.15.13.0-1004.45.11.0-1015.16~20.04.15.15.0-1015.17~20.04.15.8.0-14.16~20.04.16.5.0-17.17.1.1~22.04.16.8.0-38.38.1~22.04.14.4.0-1077.824.4.0-1078.834.4.0-1012.124.4.0-1013.144.4.0-1013.154.4.0-1015.184.4.0-1019.224.4.0-1020.234.4.0-1022.254.4.0-1024.274.4.0-1026.294.4.0-1030.33+25 more4.4.0-1078.836.5.0-1007.8~22.04.15.4.0-1020.245.15.0-1022.261:2.3+dfsg-5ubuntu101:2.3+dfsg-5ubuntu91:2.4+dfsg-4ubuntu11:2.4+dfsg-4ubuntu21:2.4+dfsg-4ubuntu31:2.4+dfsg-5ubuntu31:2.5+dfsg-1ubuntu21:2.5+dfsg-1ubuntu31:2.5+dfsg-1ubuntu41:2.5+dfsg-1ubuntu5+19 more1:2.5+dfsg-5ubuntu10.151.5.0+dfsg-3ubuntu51.5.0+dfsg-3ubuntu61.6.0+dfsg-2ubuntu11.6.0+dfsg-2ubuntu21.6.0+dfsg-2ubuntu31.6.0+dfsg-2ubuntu41.7.0+dfsg-2ubuntu11.7.0+dfsg-2ubuntu21.7.0+dfsg-2ubuntu31.7.0+dfsg-2ubuntu4+48 more2.0.0+dfsg-2ubuntu1.35Exploitability
AV:LAC:LPR:LUI:NScope
S:CImpact
C:HI:NA:NCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N