CVE-2016-6258 (xen, xenserver)
The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries.
Source: CVE-2016-6258 (xen, xenserver)