xen-4.6.1-11.fc24
FEDORA-2016-389be30b95 created by myoung 4 years ago for Fedora 24
stable

fix for CVE-2016-2858 doesn't build with qemu-xen enabled Unsanitised guest input in libxl device handling code [XSA-175, CVE-2016-4962] (#1342132) Unsanitised driver domain input in libxl device handling [XSA-178, CVE-2016-4963] (#1342131) arm: Host crash caused by VMID exhaust [XSA-181] (#1342530) Qemu: display: vmsvga: out-of-bounds read in vmsvga_fifo_read_raw() routine [CVE-2016-4454] (#1340741) Qemu: display: vmsvga: infinite loop in vmsvga_fifo_run() routine [CVE-2016-4453] (#1340746) Qemu: scsi: esp: OOB write when using non-DMA mode in get_cmd [CVE-2016-5238] (#1341931)

How to install

sudo dnf upgrade --advisory=FEDORA-2016-389be30b95

This update has been submitted for testing by myoung.

4 years ago

This update has been pushed to testing.

4 years ago
User Icon besser82 commented & provided feedback 4 years ago
karma

Works great! LGTM! =)

This update has reached 3 days in testing and can be pushed to stable now if the maintainer wishes

4 years ago
User Icon pwalter commented & provided feedback 4 years ago
karma

Works

This update has been submitted for stable by myoung.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata
Type
security
Karma
2
Signed
Content Type
RPM
Test Gating
Builds
1
xen-4.6.1-11.fc24
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago
BZ#1335438 CVE-2016-4962 xsa175 xen: Unsanitised guest input in libxl device handling code (XSA-175)
0
0
BZ#1335442 CVE-2016-4963 xsa178 xen: Unsanitised driver domain input in libxl device handling (XSA-178)
0
0
BZ#1336429 CVE-2016-4454 Qemu: display: vmsvga: out-of-bounds read in vmsvga_fifo_read_raw() routine
0
0
BZ#1336650 CVE-2016-4453 Qemu: display: vmsvga: infinite loop in vmsvga_fifo_run() routine
0
0
BZ#1340741 CVE-2016-4454 xen: Qemu: display: vmsvga: out-of-bounds read in vmsvga_fifo_read_raw() routine [fedora-all]
0
0
BZ#1340746 CVE-2016-4453 xen: Qemu: display: vmsvga: infinite loop in vmsvga_fifo_run() routine [fedora-all]
0
0
BZ#1341931 CVE-2016-5238 Qemu: scsi: esp: OOB write when using non-DMA mode in get_cmd
0
0
BZ#1342131 CVE-2016-4963 xsa178 xen: Unsanitised driver domain input in libxl device handling (XSA-178) [fedora-all]
0
0
BZ#1342132 CVE-2016-4962 xsa175 xen: Unsanitised guest input in libxl device handling code (XSA-175) [fedora-all]
0
0
BZ#1342529 CVE-2016-5242 xsa181 xen: arm: Host crash caused by VMID exhaustion (XSA-181)
0
0
BZ#1342530 xsa181 xen: arm: Host crash caused by VMID exhaustion (XSA-181) [fedora-all]
0
0

Automated Test Results

Copyright © 2007-2019 Red Hat, Inc. and others.

Running bodhi-5.6.1 on bodhi-web-88-h8q4c.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy