Detections
Analytics

Alpine: multiple xen packages: security update to 4.6.1-r2 (deprecated)

high Tenable Cloud Security Plugin ID 401022

Description

There are packages installed that are affected by multiple vulnerabilities referenced in the following CVEs:

 - The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen 4.6.x and earlier does not properly
 handle the Page Size (PS) page table entry bit at the L4 and L3 page table levels, which might allow local
 guest OS users to gain privileges via a crafted mapping of memory. (CVE-2016-4480)

 - The qemu implementation in libvirt before 1.3.0 and Xen allows local guest OS users to cause a denial of
 service (host disk consumption) by writing to stdout or stderr. (CVE-2014-3672)

 - The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows
 local guest OS administrators to execute arbitrary code on the host by changing access modes after setting
 the bank register, aka the "Dark Portal" issue. (CVE-2016-3710)

 - Integer overflow in the VGA module in QEMU allows local guest OS users to cause a denial of service (out-
 of-bounds read and QEMU process crash) by editing VGA registers in VBE mode. (CVE-2016-3712)

 - Xen and the Linux kernel through 4.5.x do not properly suppress hugetlbfs support in x86 PV guests, which
 allows local PV guest OS users to cause a denial of service (guest OS crash) by attempting to access a
 hugetlbfs mapped area. (CVE-2016-3961)

See Also

https://git.alpinelinux.org/aports/commit/?id=08e33d0f02c353d47b25b57f4f56a6ba9918fe32

https://git.alpinelinux.org/aports/commit/?id=34a184ba931dbb3ae96e346f438955810f0eb765

Plugin Details

Severity: High

ID: 401022

Version: Revision 1.23

Type: Local

Published: 8/16/2023

Updated: 6/22/2026

Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: High

Score: 7.3

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 5.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2016-4480

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

CVSS Score Source: CVE-2016-3710

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 6/23/2016

Vulnerability Publication Date: 4/14/2016

Reference Information

CVE: CVE-2014-3672, CVE-2016-3710, CVE-2016-3712, CVE-2016-3961, CVE-2016-4480, CVE-2016-4962, CVE-2016-4963, CVE-2016-5242

BID: 86068, 90314, 90316, 90710, 91003, 91006, 91015

IAVA: 2016-A-0140-S