FEDORA-2017-b3bdaf58bc created by myoung 2 years ago for Fedora 24
stable

xen: various flaws (#1463247) blkif responses leak backend stack data [XSA-216] page transfer may allow PV guest to elevate privilege [XSA-217] Races in the grant table unmap code [XSA-218] x86: insufficient reference counts during shadow emulation [XSA-219] x86: PKRU and BND* leakage between vCPU-s [XSA-220] stale P2M mappings due to insufficient error checking [XSA-222] ARM guest disabling interrupt may crash Xen [XSA-223] grant table operations mishandle reference counts [XSA-224] arm: vgic: Out-of-bound access when sending SGIs [XSA-225] NULL pointer deref in event channel poll [XSA-221] (#1463231)

How to install

sudo dnf upgrade --advisory=FEDORA-2017-b3bdaf58bc

This update has been submitted for testing by myoung.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon cserpentis commented & provided feedback 2 years ago
karma

works fine for me in a VM

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

2 years ago

This update has been submitted for stable by myoung.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#1458870 CVE-2017-10911 xsa216 xen: blkif responses leak backend stack data (XSA-216)
0
0
BZ#1458871 CVE-2017-10912 xsa217 xen: page transfer may allow PV guest to elevate privilege (XSA-217)
0
0
BZ#1458872 CVE-2017-10913 CVE-2017-10914 xsa218 xen: Races in the grant table unmap code (XSA-218)
0
0
BZ#1458873 CVE-2017-10915 xsa219 xen: x86: insufficient reference counts during shadow emulation (XSA-219)
0
0
BZ#1458874 CVE-2017-10916 xsa220 xen: x86: PKRU and BND* leakage between vCPU-s (XSA-220)
0
0
BZ#1458875 CVE-2017-10917 xsa221 xen: NULL pointer deref in event channel poll (XSA-221)
0
0
BZ#1458876 CVE-2017-10918 xsa222 xen: stale P2M mappings due to insufficient error checking (XSA-222)
0
0
BZ#1458877 CVE-2017-10919 xsa223 xen: ARM guest disabling interrupt may crash Xen (XSA-223)
0
0
BZ#1458878 CVE-2017-10920 CVE-2017-10921 CVE-2017-10922 xsa224 xen: grant table operations mishandle reference counts (XSA-224)
0
0
BZ#1459515 CVE-2017-10923 xsa225 xen: arm: vgic: Out-of-bound access when sending SGIs (XSA-225)
0
0
BZ#1463231 CVE-2017-10917 xen: xsa221 xen: NULL pointer deref in event channel poll (XSA-221) [fedora-all]
0
0
BZ#1463247 CVE-2017-10911 CVE-2017-10912 CVE-2017-10913 CVE-2017-10914 CVE-2017-10915 CVE-2017-10916 CVE-2017-10918 CVE-2017-10919 CVE-2017-10920 CVE-2017-10921 CVE-2017-10922 CVE-2017-10923 xen: various flaws [fedora-all]
0
0

Automated Test Results