obsolete

xen-4.5.3-7.fc23

FEDORA-2016-0f550603a5 created by myoung 6 years ago for Fedora 23

fix for CVE-2016-2858 doesn't build with qemu-xen enabled Unsanitised guest input in libxl device handling code [XSA-175, CVE-2016-4962] (#1342132) Unsanitised driver domain input in libxl device handling [XSA-178, CVE-2016-4963] (#1342131) arm: Host crash caused by VMID exhaust [XSA-181] (#1342530) Qemu: display: vmsvga: out-of-bounds read in vmsvga_fifo_read_raw() routine [CVE-2016-4454] (#1340741) Qemu: display: vmsvga: infinite loop in vmsvga_fifo_run() routine [CVE-2016-4453] (#1340746) Qemu: scsi: esp: OOB write when using non-DMA mode in get_cmd [CVE-2016-5238] (#1341931)

This update has been submitted for testing by myoung.

6 years ago

This update has been pushed to testing.

6 years ago
User Icon cserpentis commented & provided feedback 6 years ago
karma

works for me

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

6 years ago

This update has been obsoleted by xen-4.5.3-8.fc23.

6 years ago

Please login to add feedback.

Metadata
Type
security
Karma
1
Signed
Content Type
RPM
Test Gating
Builds
1
xen-4.5.3-7.fc23
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
6 years ago
in testing
6 years ago
BZ#1335438 CVE-2016-4962 xsa175 xen: Unsanitised guest input in libxl device handling code (XSA-175)
0
0
BZ#1335442 CVE-2016-4963 xsa178 xen: Unsanitised driver domain input in libxl device handling (XSA-178)
0
0
BZ#1336429 CVE-2016-4454 Qemu: display: vmsvga: out-of-bounds read in vmsvga_fifo_read_raw() routine
0
0
BZ#1336650 CVE-2016-4453 Qemu: display: vmsvga: infinite loop in vmsvga_fifo_run() routine
0
0
BZ#1340741 CVE-2016-4454 xen: Qemu: display: vmsvga: out-of-bounds read in vmsvga_fifo_read_raw() routine [fedora-all]
0
0
BZ#1340746 CVE-2016-4453 xen: Qemu: display: vmsvga: infinite loop in vmsvga_fifo_run() routine [fedora-all]
0
0
BZ#1341931 CVE-2016-5238 Qemu: scsi: esp: OOB write when using non-DMA mode in get_cmd
0
0
BZ#1342131 CVE-2016-4963 xsa178 xen: Unsanitised driver domain input in libxl device handling (XSA-178) [fedora-all]
0
0
BZ#1342132 CVE-2016-4962 xsa175 xen: Unsanitised guest input in libxl device handling code (XSA-175) [fedora-all]
0
0
BZ#1342529 CVE-2016-5242 xsa181 xen: arm: Host crash caused by VMID exhaustion (XSA-181)
0
0
BZ#1342530 xsa181 xen: arm: Host crash caused by VMID exhaustion (XSA-181) [fedora-all]
0
0
xen-4.5.3-7.fc23

Automated Test Results

None

Copyright © 2007-2023 Red Hat, Inc. and others.

Running bodhi-server 7.0.1 on bodhi-web-50-xcldg.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy