High severity8.2NVD Advisory· Published Sep 21, 2016· Updated Jun 17, 2026
CVE-2016-7093
CVE-2016-7093
Description
Xen 4.5.3, 4.6.3, and 4.7.x allow local HVM guest OS administrators to overwrite hypervisor memory and consequently gain host OS privileges by leveraging mishandling of instruction pointer truncation during emulation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11- osv-coords10 versionspkg:rpm/opensuse/xen&distro=openSUSE%20Tumbleweedpkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1
< 4.7.0_12-1.3+ 9 more
- (no CPE)range: < 4.7.0_12-1.3
- (no CPE)range: < 4.5.3_10-20.1
- (no CPE)range: < 4.4.4_08-40.2
- (no CPE)range: < 4.5.3_10-20.1
- (no CPE)range: < 4.4.4_04-22.22.2
- (no CPE)range: < 4.4.4_08-40.2
- (no CPE)range: < 4.4.4_04-22.22.2
- (no CPE)range: < 4.5.3_10-20.1
- (no CPE)range: < 4.4.4_08-40.2
- (no CPE)range: < 4.5.3_10-20.1
Patches
Vulnerability mechanics
References
6- xenbits.xen.org/xsa/advisory-186.htmlnvdPatchVendor Advisory
- xenbits.xen.org/xsa/xsa186-0001-x86-emulate-Correct-boundary-interactions-of-emulate.patchnvdPatchVendor Advisory
- support.citrix.com/article/CTX216071nvdThird Party Advisory
- www.securitytracker.com/id/1036752nvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/92865nvd
- security.gentoo.org/glsa/201611-09nvd
News mentions
0No linked articles in our index yet.