FEDORA-2017-978bebe3a7 created by myoung 3 years ago for Fedora 25
obsolete

full fix for XSA-226, replacing workaround drop conflict of xendomain and libvirtd as can cause problems (#1398590) add-to-physmap error paths fail to release lock on ARM [XSA-235] (#1484476) Qemu: audio: host memory leakage via capture buffer [CVE-2017-8309] (#1446521) Qemu: input: host memory leakage via keyboard events [CVE-2017-8379] (#1446561)


Qemu: serial: host memory leakage 16550A UART emulation [CVE-2017-5579] (#1416162) Qemu: display: cirrus: OOB read access issue [CVE-2017-7718] (#1443444) xen: various flaws (#1481765) multiple problems with transitive grants [XSA-226, CVE-2017-12135] x86: PV privilege escalation via map_grant_ref [XSA-227, CVE-2017-12137] grant_table: Race conditions with maptrack free list handling [XSA-228, CVE-2017-12136] grant_table: possibly premature clearing of GTF_writing / GTF_reading [XSA-230, CVE-2017-12855]

This update has been submitted for testing by myoung.

3 years ago

This update has obsoleted xen-4.7.3-2.fc25, and has inherited its bugs and notes.

3 years ago

This update has been pushed to testing.

3 years ago
User Icon filiperosset commented & provided feedback 3 years ago
karma

no regressions noted

This update has been obsoleted by xen-4.7.3-4.fc25.

3 years ago

Please login to add feedback.

Metadata
Type
security
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
3 years ago
in testing
3 years ago
BZ#1398590 libvirtd doesn't start after reboot even though it's 'enabled'
0
0
BZ#1416162 CVE-2017-5579 xen: Qemu: serial: host memory leakage 16550A UART emulation [fedora-all]
0
0
BZ#1443444 CVE-2017-7718 xen: Qemu: display: cirrus: OOB read access issue [fedora-all]
0
0
BZ#1446517 CVE-2017-8309 Qemu: audio: host memory leakage via capture buffer
0
0
BZ#1446521 CVE-2017-8309 xen: Qemu: audio: host memory lekage via capture buffer [fedora-all]
0
0
BZ#1446547 CVE-2017-8379 Qemu: input: host memory lekage via keyboard events
0
0
BZ#1446561 CVE-2017-8379 xen: Qemu: input: host memory lekage via keyboard events [fedora-all]
0
0
BZ#1477651 CVE-2017-12136 xsa228 xen: grant_table: Race conditions with maptrack free list handling (XSA-228)
0
0
BZ#1477655 CVE-2017-12135 xsa226 xen: possibly unbounded recursion in grant table code (XSA-226)
0
0
BZ#1477657 CVE-2017-12137 xsa227 xen: x86: PV privilege escalation via map_grant_ref (XSA-227)
0
0
BZ#1481762 CVE-2017-12855 xsa230 CVE-2017-12855 xen: grant_table: possibly premature clearing of GTF_writing / GTF_reading (XSA-230)
0
0
BZ#1481765 CVE-2017-12134 CVE-2017-12135 CVE-2017-12136 CVE-2017-12137 CVE-2017-12855 xen: various flaws [fedora-all]
0
0
BZ#1484476 xsa235 xen: add-to-physmap error paths fail to release lock on ARM
0
0

Automated Test Results