Oracle VM Server for x86 Bulletin - October 2016 - Oracle CVRF Oracle VM Server for x86 Bulletin Advisory OVMBulletinOct2016 Final 3.0 1.0 2016-10-18T13:00:00-07:00 Initial Distribution 2.0 2016-11-18T13:00:00-07:00 New CVEs added. 3.0 2016-12-19T13:00:00-07:00 New CVEs added. This document contains descriptions of Oracle VM Server for x86 security vulnerabilities which have had fixes released for all supported versions and platforms. http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html URL to html version of Advisory Oracle VM Server for x86 3.2 Oracle VM Server for x86 3.3 Oracle VM Server for x86 3.4 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 7.5 CVSS V2 Vector: AV:N/AC:M/Au:S/C:P/I:P/A:C. Fix has been released CVE-2016-9383 P-4455V-3.4 7.5 AV:N/AC:M/Au:S/C:P/I:P/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0164.html P-4455V-3.4 This is a vulnerability in ovm-consoled in Oracle VM Server for x86. ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 7.3 CVSS V2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P. Fix has been released CVE-2016-5485 P-4455V-3.3 P-4455V-3.4 7.3 AV:N/AC:L/Au:N/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0151.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockoptimplementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-container root access to provide a crafted offset value that triggers an unintended decrement. CVSS Base Score: 7.2 CVSS V2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-4997 P-4455V-3.2 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0158.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Use-after-free vulnerability in mm/percpu.c in the Linux kernelthrough 4.6 allows local users to cause a denial of service (BUG) or possibly have unspecified other impact via crafted use of the mmap and bpf system calls. CVSS Base Score: 7.2 CVSS V2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-4794 P-4455V-3.4 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0162.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockoptimplementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-container root access to provide a crafted offset value that triggers an unintended decrement. CVSS Base Score: 7.2 CVSS V2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-4997 P-4455V-3.3 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0133.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockoptimplementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-container root access to provide a crafted offset value that triggers an unintended decrement. CVSS Base Score: 7.2 CVSS V2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-4997 P-4455V-3.4 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0134.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 7.1 CVSS V2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-7039 P-4455V-3.4 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0140.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The sctp_sf_ootb function in net/sctp/sm_statefuns.c in the Linuxkernel before 4.8.8 lacks chunk-length checking for the first chunk, which allows remote attackers to cause a denial of service (out-of-bounds slab access) or possibly have unspecified other impact via crafted SCTP data. CVSS Base Score: 7.1 CVSS V2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-9555 P-4455V-3.4 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0174.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The sctp_sf_ootb function in net/sctp/sm_statefuns.c in the Linuxkernel before 4.8.8 lacks chunk-length checking for the first chunk, which allows remote attackers to cause a denial of service (out-of-bounds slab access) or possibly have unspecified other impact via crafted SCTP data. CVSS Base Score: 7.1 CVSS V2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-9555 P-4455V-3.3 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0175.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The key_reject_and_link function in security/keys/key.c in the Linuxkernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command. CVSS Base Score: 6.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-4470 P-4455V-3.2 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0158.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka Dirty CVSS Base Score: 6.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-5195 P-4455V-3.2 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0158.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Multiple heap-based buffer overflows in the hiddev_ioctl_usagefunction in drivers/hid/usbhid/hiddev.c in the Linux kernel through 4.6.3 allow local users to cause a denial of service or possibly have unspecified other impact via a crafted (1) HIDIOCGUSAGES or (2) HIDIOCSUSAGES ioctl call. CVSS Base Score: 6.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-5829 P-4455V-3.2 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0158.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Multiple heap-based buffer overflows in the hiddev_ioctl_usagefunction in drivers/hid/usbhid/hiddev.c in the Linux kernel through 4.6.3 allow local users to cause a denial of service or possibly have unspecified other impact via a crafted (1) HIDIOCGUSAGES or (2) HIDIOCSUSAGES ioctl call. CVSS Base Score: 6.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-5829 P-4455V-3.4 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0138.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Multiple heap-based buffer overflows in the hiddev_ioctl_usagefunction in drivers/hid/usbhid/hiddev.c in the Linux kernel through 4.6.3 allow local users to cause a denial of service or possibly have unspecified other impact via a crafted (1) HIDIOCGUSAGES or (2) HIDIOCSUSAGES ioctl call. CVSS Base Score: 6.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-5829 P-4455V-3.3 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0139.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in theLinux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling. CVSS Base Score: 6.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-1583 P-4455V-3.4 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0154.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in theLinux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling. CVSS Base Score: 6.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-1583 P-4455V-3.3 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0155.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in theLinux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling. CVSS Base Score: 6.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-1583 P-4455V-3.4 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0162.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in theLinux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames, leading to recursive pagefault handling. CVSS Base Score: 6.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-1583 P-4455V-3.2 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0167.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka Dirty CVSS Base Score: 6.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-5195 P-4455V-3.4 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0149.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka Dirty CVSS Base Score: 6.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-5195 P-4455V-3.3 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0150.html P-4455V-3.3 This is a vulnerability in expat in Oracle VM Server for x86. Expat allows context-dependent attackers to cause a denial of service(crash) or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow. CVSS Base Score: 6.8 CVSS V2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P. Fix has been released CVE-2016-0718 P-4455V-3.3 P-4455V-3.4 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0168.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in policycoreutils in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6.8 CVSS V2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P. Fix has been released CVE-2016-7545 P-4455V-3.3 P-4455V-3.4 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0157.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in sudo in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6.6 CVSS V2 Vector: AV:L/AC:M/Au:S/C:C/I:C/A:C. Fix has been released CVE-2016-7032 P-4455V-3.3 P-4455V-3.4 6.6 AV:L/AC:M/Au:S/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0170.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in sudo in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6.6 CVSS V2 Vector: AV:L/AC:M/Au:S/C:C/I:C/A:C. Fix has been released CVE-2016-7076 P-4455V-3.3 P-4455V-3.4 6.6 AV:L/AC:M/Au:S/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0170.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6.5 CVSS V2 Vector: AV:A/AC:H/Au:S/C:C/I:C/A:C. Fix has been released CVE-2016-9637 P-4455V-3.3 6.5 AV:A/AC:H/Au:S/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0171.html P-4455V-3.3 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6.5 CVSS V2 Vector: AV:A/AC:H/Au:S/C:C/I:C/A:C. Fix has been released CVE-2016-9637 P-4455V-3.2 6.5 AV:A/AC:H/Au:S/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0172.html P-4455V-3.2 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6.5 CVSS V2 Vector: AV:A/AC:H/Au:S/C:C/I:C/A:C. Fix has been released CVE-2016-9637 P-4455V-3.4 6.5 AV:A/AC:H/Au:S/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0173.html P-4455V-3.4 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6.3 CVSS V2 Vector: AV:N/AC:M/Au:S/C:N/I:N/A:C. Fix has been released CVE-2016-9385 P-4455V-3.4 6.3 AV:N/AC:M/Au:S/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0164.html P-4455V-3.4 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6.3 CVSS V2 Vector: AV:N/AC:M/Au:S/C:N/I:N/A:C. Fix has been released CVE-2016-9385 P-4455V-3.3 6.3 AV:N/AC:M/Au:S/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0165.html P-4455V-3.3 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6.3 CVSS V2 Vector: AV:N/AC:M/Au:S/C:N/I:N/A:C. Fix has been released CVE-2016-9385 P-4455V-3.2 6.3 AV:N/AC:M/Au:S/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0166.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The netfilter subsystem in the Linux kernel through 4.5.2 does notvalidate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call. CVSS Base Score: 6.2 CVSS V2 Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-3134 P-4455V-3.2 6.2 AV:L/AC:H/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0158.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The netfilter subsystem in the Linux kernel through 4.5.2 does notvalidate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call. CVSS Base Score: 6.2 CVSS V2 Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-3134 P-4455V-3.4 6.2 AV:L/AC:H/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0138.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The netfilter subsystem in the Linux kernel through 4.5.2 does notvalidate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call. CVSS Base Score: 6.2 CVSS V2 Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C. Fix has been released CVE-2016-3134 P-4455V-3.3 6.2 AV:L/AC:H/Au:N/C:C/I:C/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0139.html P-4455V-3.3 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6 CVSS V2 Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9381 P-4455V-3.4 6 AV:N/AC:M/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0164.html P-4455V-3.4 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6 CVSS V2 Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9381 P-4455V-3.3 6 AV:N/AC:M/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0165.html P-4455V-3.3 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6 CVSS V2 Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9381 P-4455V-3.2 6 AV:N/AC:M/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0166.html P-4455V-3.2 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6 CVSS V2 Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9386 P-4455V-3.4 6 AV:N/AC:M/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0164.html P-4455V-3.4 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6 CVSS V2 Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9386 P-4455V-3.3 6 AV:N/AC:M/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0165.html P-4455V-3.3 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 6 CVSS V2 Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9386 P-4455V-3.2 6 AV:N/AC:M/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0166.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The IPT_SO_SET_REPLACE setsockopt implementation in the netfiltersubsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary. CVSS Base Score: 5.6 CVSS V2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:C. Fix has been released CVE-2016-4998 P-4455V-3.2 5.6 AV:L/AC:L/Au:N/C:P/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0158.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Race condition in the tty_ioctl function in drivers/tty/tty_io.c inthe Linux kernel through 4.4.1 allows local users to obtain sensitive information from kernel memory or cause a denial of service (use-after-free and system crash) by making a TIOCGETD ioctl call during processing of a TIOCSETD ioctl call. CVSS Base Score: 5.6 CVSS V2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:C. Fix has been released CVE-2016-0723 P-4455V-3.4 5.6 AV:L/AC:L/Au:N/C:P/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0100.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The IPT_SO_SET_REPLACE setsockopt implementation in the netfiltersubsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary. CVSS Base Score: 5.6 CVSS V2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:C. Fix has been released CVE-2016-4998 P-4455V-3.3 5.6 AV:L/AC:L/Au:N/C:P/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0133.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The IPT_SO_SET_REPLACE setsockopt implementation in the netfiltersubsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted offset value that leads to crossing a ruleset blob boundary. CVSS Base Score: 5.6 CVSS V2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:C. Fix has been released CVE-2016-4998 P-4455V-3.4 5.6 AV:L/AC:L/Au:N/C:P/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0134.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The nf_nat_redirect_ipv4 function in net/netfilter/nf_nat_redirect.cin the Linux kernel before 4.4 allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by sending certain IPv4 packets to an incompletely configured interface, a related issue to CVE-2003-1604. CVSS Base Score: 5.4 CVSS V2 Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C. Fix has been released CVE-2015-8787 P-4455V-3.4 5.4 AV:N/AC:H/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0100.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The rfcomm_sock_bind function in net/bluetooth/rfcomm/sock.c in theLinux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of service (NULL pointer dereference) via vectors involving a bind system call on a Bluetooth RFCOMM socket. CVSS Base Score: 5.4 CVSS V2 Vector: AV:L/AC:M/Au:N/C:P/I:N/A:C. Fix has been released CVE-2015-8956 P-4455V-3.4 5.4 AV:L/AC:M/Au:N/C:P/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0162.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The rfcomm_sock_bind function in net/bluetooth/rfcomm/sock.c in theLinux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of service (NULL pointer dereference) via vectors involving a bind system call on a Bluetooth RFCOMM socket. CVSS Base Score: 5.4 CVSS V2 Vector: AV:L/AC:M/Au:N/C:P/I:N/A:C. Fix has been released CVE-2015-8956 P-4455V-3.3 5.4 AV:L/AC:M/Au:N/C:P/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0163.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The rfcomm_sock_bind function in net/bluetooth/rfcomm/sock.c in theLinux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of service (NULL pointer dereference) via vectors involving a bind system call on a Bluetooth RFCOMM socket. CVSS Base Score: 5.4 CVSS V2 Vector: AV:L/AC:M/Au:N/C:P/I:N/A:C. Fix has been released CVE-2015-8956 P-4455V-3.2 5.4 AV:L/AC:M/Au:N/C:P/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0167.html P-4455V-3.2 This is a vulnerability in nss nss-util in Oracle VM Server for x86. Mozilla Network Security Services (NSS) before 3.23, as used inMozilla Firefox before 47.0, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unknown vectors. CVSS Base Score: 5.1 CVSS V2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P. Fix has been released CVE-2016-2834 P-4455V-3.3 P-4455V-3.4 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0159.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in nss in Oracle VM Server for x86. Mozilla Network Security Services (NSS) before 3.23, as used inMozilla Firefox before 47.0, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unknown vectors. CVSS Base Score: 5.1 CVSS V2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P. Fix has been released CVE-2016-2834 P-4455V-3.2 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0160.html P-4455V-3.2 This is a vulnerability in bind in Oracle VM Server for x86. buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query. CVSS Base Score: 5 CVSS V2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-2776 P-4455V-3.3 P-4455V-3.4 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0136.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in bind in Oracle VM Server for x86. buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query. CVSS Base Score: 5 CVSS V2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-2776 P-4455V-3.2 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0137.html P-4455V-3.2 This is a vulnerability in bind in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 5 CVSS V2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-2848 P-4455V-3.3 P-4455V-3.4 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0145.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in bind in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 5 CVSS V2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-2848 P-4455V-3.2 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0146.html P-4455V-3.2 This is a vulnerability in bind in Oracle VM Server for x86. named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and9.11.x before 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a DNAME record in the answer section of a response to a recursive query, related to db.c and resolver.c. CVSS Base Score: 5 CVSS V2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-8864 P-4455V-3.3 P-4455V-3.4 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0152.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in bind in Oracle VM Server for x86. named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and9.11.x before 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a DNAME record in the answer section of a response to a recursive query, related to db.c and resolver.c. CVSS Base Score: 5 CVSS V2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-8864 P-4455V-3.2 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0153.html P-4455V-3.2 This is a vulnerability in openssl in Oracle VM Server for x86. The DTLS implementation in OpenSSL before 1.1.0 does not properlyrestrict the lifetime of queue entries associated with unused out-of-order messages, which allows remote attackers to cause a denial of service (memory consumption) by maintaining many crafted DTLS sessions simultaneously, related to d1_lib.c, statem_dtls.c, statem_lib.c, and statem_srvr.c. CVSS Base Score: 5 CVSS V2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-2179 P-4455V-3.3 P-4455V-3.4 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0135.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in openssl in Oracle VM Server for x86. Multiple memory leaks in t1_lib.c in OpenSSL before 1.0.1u, 1.0.2before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service (memory consumption) via large OCSP Status Request extensions. CVSS Base Score: 5 CVSS V2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-6304 P-4455V-3.3 P-4455V-3.4 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0135.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The hub_activate function in drivers/usb/core/hub.c in the Linuxkernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a denial of service (invalid memory access and system crash) or possibly have unspecified other impact by unplugging a USB hub device. CVSS Base Score: 4.9 CVSS V2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C. Fix has been released CVE-2015-8816 P-4455V-3.4 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0100.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. fs/pipe.c in the Linux kernel before 4.5 does not limit the amount ofunread data in pipes, which allows local users to cause a denial of service (memory consumption) by creating many pipes with non-default sizes. CVSS Base Score: 4.9 CVSS V2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-2847 P-4455V-3.4 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0100.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The tipc_nl_publ_dump function in net/tipc/socket.c in the Linuxkernel through 4.6 does not verify socket existence, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a dumpit operation. CVSS Base Score: 4.9 CVSS V2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-4951 P-4455V-3.4 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0100.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The mpi_powm function in lib/mpi/mpi-pow.c in the Linux kernel through4.8.11 does not ensure that memory is allocated for limb data, which allows local users to cause a denial of service (stack memory corruption and panic) via an add_key system call for an RSA key with a zero exponent. CVSS Base Score: 4.9 CVSS V2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-8650 P-4455V-3.4 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0174.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The mpi_powm function in lib/mpi/mpi-pow.c in the Linux kernel through4.8.11 does not ensure that memory is allocated for limb data, which allows local users to cause a denial of service (stack memory corruption and panic) via an add_key system call for an RSA key with a zero exponent. CVSS Base Score: 4.9 CVSS V2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-8650 P-4455V-3.3 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0175.html P-4455V-3.3 This is a vulnerability in xen in Oracle VM Server for x86. Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, whichallows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it. CVSS Base Score: 4.9 CVSS V2 Vector: AV:N/AC:M/Au:S/C:P/I:P/A:N. Fix has been released CVE-2016-7777 P-4455V-3.4 4.9 AV:N/AC:M/Au:S/C:P/I:P/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0164.html P-4455V-3.4 This is a vulnerability in xen in Oracle VM Server for x86. Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, whichallows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it. CVSS Base Score: 4.9 CVSS V2 Vector: AV:N/AC:M/Au:S/C:P/I:P/A:N. Fix has been released CVE-2016-7777 P-4455V-3.3 4.9 AV:N/AC:M/Au:S/C:P/I:P/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0165.html P-4455V-3.3 This is a vulnerability in xen in Oracle VM Server for x86. Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, whichallows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it. CVSS Base Score: 4.9 CVSS V2 Vector: AV:N/AC:M/Au:S/C:P/I:P/A:N. Fix has been released CVE-2016-7777 P-4455V-3.2 4.9 AV:N/AC:M/Au:S/C:P/I:P/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0166.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The trace_writeback_dirty_page implementation ininclude/trace/events/writeback.h in the Linux kernel before 4.4 improperly interacts with mm/migrate.c, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by triggering a certain page move. CVSS Base Score: 4.7 CVSS V2 Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-3070 P-4455V-3.4 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0162.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The trace_writeback_dirty_page implementation ininclude/trace/events/writeback.h in the Linux kernel before 4.4 improperly interacts with mm/migrate.c, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by triggering a certain page move. CVSS Base Score: 4.7 CVSS V2 Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-3070 P-4455V-3.3 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0163.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The trace_writeback_dirty_page implementation ininclude/trace/events/writeback.h in the Linux kernel before 4.4 improperly interacts with mm/migrate.c, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by triggering a certain page move. CVSS Base Score: 4.7 CVSS V2 Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-3070 P-4455V-3.2 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0167.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. fs/pnode.c in the Linux kernel before 4.5.4 does not properly traversea mount propagation tree in a certain case involving a slave mount, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via a crafted series of mount system calls. CVSS Base Score: 4.7 CVSS V2 Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-4581 P-4455V-3.4 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0100.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. drivers/infiniband/ulp/srpt/ib_srpt.c in the Linux kernel before 4.5.1allows local users to cause a denial of service (NULL pointer dereference and system crash) by using an ABORT_TASK command to abort a device write operation. CVSS Base Score: 4.7 CVSS V2 Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-6327 P-4455V-3.3 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0163.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Race condition in the ioctl_send_fib function indrivers/scsi/aacraid/commctrl.c in the Linux kernel through 4.7 allows local users to cause a denial of service (out-of-bounds access or system crash) by changing a certain size value, aka a double CVSS Base Score: 4.7 CVSS V2 Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-6480 P-4455V-3.4 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0162.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Race condition in the ioctl_send_fib function indrivers/scsi/aacraid/commctrl.c in the Linux kernel through 4.7 allows local users to cause a denial of service (out-of-bounds access or system crash) by changing a certain size value, aka a double CVSS Base Score: 4.7 CVSS V2 Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-6480 P-4455V-3.3 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0163.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Race condition in the ioctl_send_fib function indrivers/scsi/aacraid/commctrl.c in the Linux kernel through 4.7 allows local users to cause a denial of service (out-of-bounds access or system crash) by changing a certain size value, aka a double CVSS Base Score: 4.7 CVSS V2 Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C. Fix has been released CVE-2016-6480 P-4455V-3.2 4.7 AV:L/AC:M/Au:N/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0167.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The asn1_ber_decoder function in lib/asn1_decoder.c in the Linuxkernel before 4.3 allows attackers to cause a denial of service (panic) via an ASN.1 BER file that lacks a public key, leading to mishandling by the public_key_verify_signature function in crypto/asymmetric_keys/public_key.c. CVSS Base Score: 4.6 CVSS V2 Vector: AV:L/AC:L/Au:S/C:N/I:N/A:C. Fix has been released CVE-2016-2053 P-4455V-3.4 4.6 AV:L/AC:L/Au:S/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0162.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The asn1_ber_decoder function in lib/asn1_decoder.c in the Linuxkernel before 4.3 allows attackers to cause a denial of service (panic) via an ASN.1 BER file that lacks a public key, leading to mishandling by the public_key_verify_signature function in crypto/asymmetric_keys/public_key.c. CVSS Base Score: 4.6 CVSS V2 Vector: AV:L/AC:L/Au:S/C:N/I:N/A:C. Fix has been released CVE-2016-2053 P-4455V-3.3 4.6 AV:L/AC:L/Au:S/C:N/I:N/A:C Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0163.html P-4455V-3.3 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.6 CVSS V2 Vector: AV:N/AC:H/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9379 P-4455V-3.4 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0164.html P-4455V-3.4 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.6 CVSS V2 Vector: AV:N/AC:H/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9379 P-4455V-3.3 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0165.html P-4455V-3.3 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.6 CVSS V2 Vector: AV:N/AC:H/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9379 P-4455V-3.2 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0166.html P-4455V-3.2 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.6 CVSS V2 Vector: AV:N/AC:H/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9380 P-4455V-3.4 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0164.html P-4455V-3.4 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.6 CVSS V2 Vector: AV:N/AC:H/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9380 P-4455V-3.3 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0165.html P-4455V-3.3 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.6 CVSS V2 Vector: AV:N/AC:H/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9380 P-4455V-3.2 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0166.html P-4455V-3.2 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.6 CVSS V2 Vector: AV:N/AC:H/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9382 P-4455V-3.4 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0164.html P-4455V-3.4 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.6 CVSS V2 Vector: AV:N/AC:H/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9382 P-4455V-3.3 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0165.html P-4455V-3.3 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.6 CVSS V2 Vector: AV:N/AC:H/Au:S/C:P/I:P/A:P. Fix has been released CVE-2016-9382 P-4455V-3.2 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0166.html P-4455V-3.2 This is a vulnerability in nss nss-util in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.3 CVSS V2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-5285 P-4455V-3.3 P-4455V-3.4 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0159.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in nss nss-util in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.3 CVSS V2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-8635 P-4455V-3.3 P-4455V-3.4 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0159.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in nss in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.3 CVSS V2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-5285 P-4455V-3.2 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0160.html P-4455V-3.2 This is a vulnerability in nss in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4.3 CVSS V2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-8635 P-4455V-3.2 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0160.html P-4455V-3.2 This is a vulnerability in openssl in Oracle VM Server for x86. The Anti-Replay feature in the DTLS implementation in OpenSSL before1.1.0 mishandles early use of a new epoch number in conjunction with a large sequence number, which allows remote attackers to cause a denial of service (false-positive packet drops) via spoofed DTLS records, related to rec_layer_d1.c and ssl3_record.c. CVSS Base Score: 4.3 CVSS V2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-2181 P-4455V-3.3 P-4455V-3.4 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0135.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in openssl in Oracle VM Server for x86. The BN_bn2dec function in crypto/bn/bn_print.c in OpenSSL before 1.1.0does not properly validate division results, which allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via unknown vectors. CVSS Base Score: 4.3 CVSS V2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-2182 P-4455V-3.3 P-4455V-3.4 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0135.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in openssl in Oracle VM Server for x86. The BN_bn2dec function in crypto/bn/bn_print.c in OpenSSL before 1.1.0does not properly validate division results, which allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via unknown vectors. CVSS Base Score: 4.3 CVSS V2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-2182 P-4455V-3.2 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0141.html P-4455V-3.2 This is a vulnerability in openssl in Oracle VM Server for x86. The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSecprotocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTPS session using Triple DES in CBC mode, aka a Sweet32 attack. CVSS Base Score: 4.3 CVSS V2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-2183 P-4455V-3.2 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0141.html P-4455V-3.2 This is a vulnerability in openssl in Oracle VM Server for x86. The tls_decrypt_ticket function in ssl/t1_lib.c in OpenSSL before1.1.0 does not consider the HMAC size during validation of the ticket length, which allows remote attackers to cause a denial of service via a ticket that is too short. CVSS Base Score: 4.3 CVSS V2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-6302 P-4455V-3.3 P-4455V-3.4 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0135.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in libgcrypt in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 4 CVSS V2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:N. Fix has been released CVE-2016-6313 P-4455V-3.3 P-4455V-3.4 4 AV:N/AC:H/Au:N/C:P/I:P/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0156.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Race condition in arch/x86/mm/tlb.c in the Linux kernel before 4.4.1allows local users to gain privileges by triggering access to a paging structure by a different CPU. CVSS Base Score: 3.7 CVSS V2 Vector: AV:L/AC:H/Au:N/C:P/I:P/A:P. Fix has been released CVE-2016-2069 P-4455V-3.4 3.7 AV:L/AC:H/Au:N/C:P/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0100.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. fs/btrfs/inode.c in the Linux kernel before 4.3.3 mishandlescompressed inline extents, which allows local users to obtain sensitive pre-truncation information from a file via a clone action. CVSS Base Score: 3.5 CVSS V2 Vector: AV:N/AC:M/Au:S/C:P/I:N/A:N. Fix has been released CVE-2015-8374 P-4455V-3.2 3.5 AV:N/AC:M/Au:S/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0158.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. fs/btrfs/inode.c in the Linux kernel before 4.3.3 mishandlescompressed inline extents, which allows local users to obtain sensitive pre-truncation information from a file via a clone action. CVSS Base Score: 3.5 CVSS V2 Vector: AV:N/AC:M/Au:S/C:P/I:N/A:N. Fix has been released CVE-2015-8374 P-4455V-3.3 3.5 AV:N/AC:M/Au:S/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0133.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The Linux kernel, as used in Red Hat Enterprise Linux 7.2 and Red HatEnterprise MRG 2 and when booted with UEFI Secure Boot enabled, allows local users to bypass intended Secure Boot restrictions and execute untrusted code by appending ACPI tables to the initrd. CVSS Base Score: 3.3 CVSS V2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P. Fix has been released CVE-2016-3699 P-4455V-3.4 3.3 AV:L/AC:M/Au:N/C:N/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0162.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The Linux kernel, as used in Red Hat Enterprise Linux 7.2 and Red HatEnterprise MRG 2 and when booted with UEFI Secure Boot enabled, allows local users to bypass intended Secure Boot restrictions and execute untrusted code by appending ACPI tables to the initrd. CVSS Base Score: 3.3 CVSS V2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P. Fix has been released CVE-2016-3699 P-4455V-3.3 3.3 AV:L/AC:M/Au:N/C:N/I:P/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0163.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Race condition in the audit_log_single_execve_arg function inkernel/auditsc.c in the Linux kernel through 4.7 allows local users to bypass intended character-set restrictions or disrupt system-call auditing by changing a certain string, aka a double CVSS Base Score: 3.3 CVSS V2 Vector: AV:L/AC:M/Au:N/C:P/I:N/A:P. Fix has been released CVE-2016-6136 P-4455V-3.4 3.3 AV:L/AC:M/Au:N/C:P/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0162.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Race condition in the audit_log_single_execve_arg function inkernel/auditsc.c in the Linux kernel through 4.7 allows local users to bypass intended character-set restrictions or disrupt system-call auditing by changing a certain string, aka a double CVSS Base Score: 3.3 CVSS V2 Vector: AV:L/AC:M/Au:N/C:P/I:N/A:P. Fix has been released CVE-2016-6136 P-4455V-3.3 3.3 AV:L/AC:M/Au:N/C:P/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0163.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Race condition in the audit_log_single_execve_arg function inkernel/auditsc.c in the Linux kernel through 4.7 allows local users to bypass intended character-set restrictions or disrupt system-call auditing by changing a certain string, aka a double CVSS Base Score: 3.3 CVSS V2 Vector: AV:L/AC:M/Au:N/C:P/I:N/A:P. Fix has been released CVE-2016-6136 P-4455V-3.2 3.3 AV:L/AC:M/Au:N/C:P/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0167.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The atl2_probe function in drivers/net/ethernet/atheros/atlx/atl2.c inthe Linux kernel through 4.5.2 incorrectly enables scatter/gather I/O, which allows remote attackers to obtain sensitive information from kernel memory by reading packet data. CVSS Base Score: 2.6 CVSS V2 Vector: AV:N/AC:H/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-2117 P-4455V-3.2 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0158.html P-4455V-3.2 This is a vulnerability in openssl in Oracle VM Server for x86. OpenSSL through 1.0.2h incorrectly uses pointer arithmetic forheap-buffer boundary checks, which might allow remote attackers to cause a denial of service (integer overflow and application crash) or possibly have unspecified other impact by leveraging unexpected malloc behavior, related to s3_srvr.c, ssl_sess.c, and t1_lib.c. CVSS Base Score: 2.6 CVSS V2 Vector: AV:N/AC:H/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-2177 P-4455V-3.3 P-4455V-3.4 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0135.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in openssl in Oracle VM Server for x86. OpenSSL through 1.0.2h incorrectly uses pointer arithmetic forheap-buffer boundary checks, which might allow remote attackers to cause a denial of service (integer overflow and application crash) or possibly have unspecified other impact by leveraging unexpected malloc behavior, related to s3_srvr.c, ssl_sess.c, and t1_lib.c. CVSS Base Score: 2.6 CVSS V2 Vector: AV:N/AC:H/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-2177 P-4455V-3.2 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0141.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The fuse_fill_write_pages function in fs/fuse/file.c in the Linuxkernel before 4.4 allows local users to cause a denial of service (infinite loop) via a writev system call that triggers a zero length for the first segment of an iov. CVSS Base Score: 2.1 CVSS V2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P. Fix has been released CVE-2015-8785 P-4455V-3.4 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0100.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The snd_timer_user_params function in sound/core/timer.c in the Linuxkernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface. CVSS Base Score: 2.1 CVSS V2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-4569 P-4455V-3.4 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0162.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The snd_timer_user_params function in sound/core/timer.c in the Linuxkernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface. CVSS Base Score: 2.1 CVSS V2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-4569 P-4455V-3.3 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0163.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The snd_timer_user_params function in sound/core/timer.c in the Linuxkernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface. CVSS Base Score: 2.1 CVSS V2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-4569 P-4455V-3.2 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0167.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. sound/core/timer.c in the Linux kernel through 4.6 does not initializecertain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) snd_timer_user_tinterrupt functions. CVSS Base Score: 2.1 CVSS V2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-4578 P-4455V-3.4 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0162.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. sound/core/timer.c in the Linux kernel through 4.6 does not initializecertain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) snd_timer_user_tinterrupt functions. CVSS Base Score: 2.1 CVSS V2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-4578 P-4455V-3.3 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0163.html P-4455V-3.3 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. sound/core/timer.c in the Linux kernel through 4.6 does not initializecertain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) snd_timer_user_tinterrupt functions. CVSS Base Score: 2.1 CVSS V2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-4578 P-4455V-3.2 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0167.html P-4455V-3.2 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The get_rock_ridge_filename function in fs/isofs/rock.c in the Linuxkernel before 4.5.5 mishandles NM (aka alternate name) entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs filesystem. CVSS Base Score: 2.1 CVSS V2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-4913 P-4455V-3.4 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0100.html P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in theLinux kernel before 4.5.2 allows local users to cause a denial of service (memory corruption and system crash, or spinlock) or possibly have unspecified other impact by removing a network namespace, related to the ppp_register_net_channel and ppp_unregister_channel functions. CVSS Base Score: 1.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-4805 P-4455V-3.4 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0100.html P-4455V-3.4 This is a vulnerability in openssl in Oracle VM Server for x86. The dsa_sign_setup function in crypto/dsa/dsa_ossl.c in OpenSSLthrough 1.0.2h does not properly ensure the use of constant-time operations, which makes it easier for local users to discover a DSA private key via a timing side-channel attack. CVSS Base Score: 1.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-2178 P-4455V-3.3 P-4455V-3.4 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0135.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in openssl in Oracle VM Server for x86. The dsa_sign_setup function in crypto/dsa/dsa_ossl.c in OpenSSLthrough 1.0.2h does not properly ensure the use of constant-time operations, which makes it easier for local users to discover a DSA private key via a timing side-channel attack. CVSS Base Score: 1.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N. Fix has been released CVE-2016-2178 P-4455V-3.2 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0141.html P-4455V-3.2 This is a vulnerability in openssl in Oracle VM Server for x86. The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL through 1.0.2h allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted time-stamp file that is mishandled by the openssl CVSS Base Score: 1.9 CVSS V2 Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-2180 P-4455V-3.3 P-4455V-3.4 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0135.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in Unbreakable Enterprise kernel in Oracle VM Server for x86. The IPv4 implementation in the Linux kernel before 4.5.2 mishandlesdestruction of device objects, which allows guest OS users to cause a denial of service (host OS networking outage) by arranging for a large number of IP addresses. CVSS Base Score: 1.7 CVSS V2 Vector: AV:L/AC:L/Au:S/C:N/I:N/A:P. Fix has been released CVE-2016-3156 P-4455V-3.4 1.7 AV:L/AC:L/Au:S/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0100.html P-4455V-3.4 This is a vulnerability in openssl in Oracle VM Server for x86. The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c. CVSS Base Score: 1.2 CVSS V2 Vector: AV:L/AC:H/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-6306 P-4455V-3.3 P-4455V-3.4 1.2 AV:L/AC:H/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0135.html P-4455V-3.3 P-4455V-3.4 This is a vulnerability in openssl in Oracle VM Server for x86. The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before1.0.2i might allow remote attackers to cause a denial of service (out-of-bounds read) via crafted certificate operations, related to s3_clnt.c and s3_srvr.c. CVSS Base Score: 1.2 CVSS V2 Vector: AV:L/AC:H/Au:N/C:N/I:N/A:P. Fix has been released CVE-2016-6306 P-4455V-3.2 1.2 AV:L/AC:H/Au:N/C:N/I:N/A:P Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0141.html P-4455V-3.2 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 0 CVSS V2 Vector: AV:N/AC:N/Au:N/C:N/I:N/A:N. Fix has been released CVE-2016-9932 P-4455V-3.4 0 AV:N/AC:N/Au:N/C:N/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0176.html P-4455V-3.4 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 0 CVSS V2 Vector: AV:N/AC:N/Au:N/C:N/I:N/A:N. Fix has been released CVE-2016-9932 P-4455V-3.3 0 AV:N/AC:N/Au:N/C:N/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0177.html P-4455V-3.3 This is a vulnerability in xen in Oracle VM Server for x86. ** RESERVED **This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVSS Base Score: 0 CVSS V2 Vector: AV:N/AC:N/Au:N/C:N/I:N/A:N. Fix has been released CVE-2016-9932 P-4455V-3.2 0 AV:N/AC:N/Au:N/C:N/I:N/A:N Oracle VM Server for x86 Security Advisory Oracle VM Server for x86 customers http://linux.oracle.com/errata/OVMSA-2016-0178.html P-4455V-3.2