← back
CVE-2016-9932

CVE-2016-9932

EPSS 0.4%
CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a "supposedly-ignored" operand size prefix.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://security.gentoo.org/glsa/201612-56https://support.citrix.com/article/CTX219378http://www.debian.org/security/2017/dsa-3847http://www.securityfocus.com/bid/94863http://www.securitytracker.com/id/1037468http://xenbits.xen.org/xsa/advisory-200.html