NVD - CVE-2016-3712

Vulnerability Change Records for CVE-2016-3712

Change History

Modified Analysis by NIST 5/14/2020 11:35:09 AM

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:citrix:xenserver::::::::* versions up to (including) 7.0
Added	CPE Configuration		OR cpe:2.3:o:redhat:enterprise_linux_desktop:6.0::::::: cpe:2.3:o:redhat:enterprise_linux_desktop:7.0::::::: cpe:2.3:o:redhat:enterprise_linux_server:6.0::::::: cpe:2.3:o:redhat:enterprise_linux_server:7.0::::::: cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3::::::: cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4::::::: cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6::::::: cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7::::::: cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3::::::: cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4::::::: cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5::::::: cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6::::::: cpe:2.3:o:redhat:enterprise_linux_server_eus:7.7::::::: cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3::::::: cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6::::::: cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7::::::: cpe:2.3:o:redhat:enterprise_linux_workstation:6.0::::::: cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::
Changed	CPE Configuration	OR cpe:2.3:a:qemu:qemu:-:::::::	OR cpe:2.3:a:qemu:qemu::::::::* versions up to (including) 2.5.1 cpe:2.3:a:qemu:qemu:2.6.0:rc0::::::* cpe:2.3:a:qemu:qemu:2.6.0:rc1::::::* cpe:2.3:a:qemu:qemu:2.6.0:rc2::::::* cpe:2.3:a:qemu:qemu:2.6.0:rc3::::::* cpe:2.3:a:qemu:qemu:2.6.0:rc4::::::*
Changed	CPE Configuration	OR cpe:2.3:o:oracle:vm_server:3.3::::::: cpe:2.3:o:oracle:vm_server:3.4:::::::	OR cpe:2.3:o:oracle:vm_server:3.3::::::x86:* cpe:2.3:o:oracle:vm_server:3.4::::::x86:*
Removed	CVSS V3	NIST AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Added	CVSS V3.1		NIST AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Added	CWE		NIST CWE-190
Removed	CWE	NIST NVD-CWE-Other
Changed	Evaluator Description	<a href="http://cwe.mitre.org/data/definitions/190.html">CWE-190: Integer Overflow or Wraparound</a>	CWE-190: Integer Overflow or Wraparound
Changed	Reference Type	http://rhn.redhat.com/errata/RHSA-2016-2585.html No Types Assigned	http://rhn.redhat.com/errata/RHSA-2016-2585.html Third Party Advisory
Changed	Reference Type	http://rhn.redhat.com/errata/RHSA-2017-0621.html No Types Assigned	http://rhn.redhat.com/errata/RHSA-2017-0621.html Third Party Advisory
Changed	Reference Type	http://support.citrix.com/article/CTX212736 No Types Assigned	http://support.citrix.com/article/CTX212736 Third Party Advisory
Changed	Reference Type	http://www.openwall.com/lists/oss-security/2016/05/09/4 No Types Assigned	http://www.openwall.com/lists/oss-security/2016/05/09/4 Mailing List, Third Party Advisory
Changed	Reference Type	http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html Vendor Advisory	http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html Third Party Advisory
Changed	Reference Type	http://www.securityfocus.com/bid/90314 No Types Assigned	http://www.securityfocus.com/bid/90314 Third Party Advisory, VDB Entry
Changed	Reference Type	http://xenbits.xen.org/xsa/advisory-179.html Vendor Advisory	http://xenbits.xen.org/xsa/advisory-179.html Third Party Advisory
Changed	Reference Type	https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01196.html Vendor Advisory	https://lists.gnu.org/archive/html/qemu-devel/2016-05/msg01196.html Mailing List, Patch, Third Party Advisory