CVE-2016-10025 — NULL Pointer Dereference in Citrix Xenserver

CWE-476 — NULL Pointer Dereference8 documents7 sources

Severity

5.5MEDIUMNVD

EPSS

0.1%

top 68.95%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Citrix Xenserver

Timeline

PublishedJan 26

Latest updateMay 17

Description

VMFUNC emulation in Xen 4.6.x through 4.8.x on x86 systems using AMD virtualization extensions (aka SVM) allows local HVM guest OS users to cause a denial of service (hypervisor crash) by leveraging a missing NULL pointer check.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶Debianxen/xen< 4.8.0-1+3

▶NVDxen/xen7 versions+6

▶NVDcitrix/xenserver4 versions+3

Patches

Patch: xenbits.xen.org ↗Patch: support.citrix.com ↗Patch: xenbits.xen.org ↗

🔴Vulnerability Details

GHSA

GHSA-26x4-v2c2-q7rx: VMFUNC emulation in Xen 4↗2022-05-17

▶

CVEList

CVE-2016-10025: VMFUNC emulation in Xen 4↗2017-01-26

▶

OSV

CVE-2016-10025: VMFUNC emulation in Xen 4↗2017-01-26

▶

📋Vendor Advisories

Red Hat

xen: x86: missing NULL pointer check in VMFUNC emulation (XSA-203)↗2016-12-21

▶

Debian

CVE-2016-10025: xen - VMFUNC emulation in Xen 4.6.x through 4.8.x on x86 systems using AMD virtualizat...↗2016

▶

💬Community

Bugzilla

CVE-2016-10024 CVE-2016-10025 xen: various flaws [fedora-all]↗2016-12-21

▶

Bugzilla

CVE-2016-10025 xsa203 xen: x86: missing NULL pointer check in VMFUNC emulation (XSA-203)↗2016-12-08

▶