FreeBSD : xen-kernel -- PV superpage functionality missing sanity checks (7ed7c36f-ddaf-11e5-b2bd-002590263bf5)

high Nessus Plugin ID 89011


The remote FreeBSD host is missing one or more security-related updates.


The Xen Project reports :

The PV superpage functionality lacks certain validity checks on data being passed to the hypervisor by guests. This is the case for the page identifier (MFN) passed to MMUEXT_MARK_SUPER and MMUEXT_UNMARK_SUPER sub-ops of the HYPERVISOR_mmuext_op hypercall as well as for various forms of page table updates.

Use of the feature, which is disabled by default, may have unknown effects, ranging from information leaks through Denial of Service to privilege escalation.


Update the affected packages.

See Also

Plugin Details

Severity: High

ID: 89011

File Name: freebsd_pkg_7ed7c36fddaf11e5b2bd002590263bf5.nasl

Version: 2.4

Type: local

Published: 2/29/2016

Updated: 1/4/2021

Risk Information


Risk Factor: Medium

Score: 6.5


Risk Factor: Medium

Base Score: 6.9

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C


Risk Factor: High

Base Score: 8.5

Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:xen-kernel, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2/28/2016

Vulnerability Publication Date: 1/20/2016

Reference Information

CVE: CVE-2016-1570