{"update": {"autokarma": true, "autotime": false, "stable_karma": 3, "stable_days": 0, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "xen: various flaws (#1463247)\nblkif responses leak backend stack data [XSA-216]\npage transfer may allow PV guest to elevate privilege [XSA-217]\nRaces in the grant table unmap code [XSA-218]\nx86: insufficient reference counts during shadow emulation [XSA-219]\nx86: PKRU and BND* leakage between vCPU-s [XSA-220]\nstale P2M mappings due to insufficient error checking [XSA-222]\nARM guest disabling interrupt may crash Xen [XSA-223]\ngrant table operations mishandle reference counts [XSA-224]\narm: vgic: Out-of-bound access when sending SGIs [XSA-225]\nNULL pointer deref in event channel poll [XSA-221] (#1463231)", "type": "security", "status": "stable", "request": null, "severity": "unspecified", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2017-06-22 23:23:16", "date_modified": null, "date_approved": null, "date_testing": "2017-06-23 20:55:56", "date_stable": "2017-07-01 21:00:30", "alias": "FEDORA-2017-b3bdaf58bc", "test_gating_status": null, "from_tag": null, "date_pushed": "2017-07-01 21:00:30", "meets_testing_requirements": false, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2017-b3bdaf58bc", "title": "xen-4.6.5-7.fc24", "version_hash": "8633caa9b667e1381cf71dccd80a0efd277cafdd", "release": {"name": "F24", "long_name": "Fedora 24", "version": "24", "id_prefix": "FEDORA", "branch": "f24", "dist_tag": "f24", "stable_tag": "f24-updates", "testing_tag": "f24-updates-testing", "candidate_tag": "f24-updates-candidate", "pending_signing_tag": "f24-signing-pending", "pending_testing_tag": "f24-updates-testing-pending", "pending_stable_tag": "f24-updates-pending", "override_tag": "f24-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": null, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "myoung", "email": "m.a.young@durham.ac.uk", "id": 129, "avatar": "https://seccdn.libravatar.org/avatar/cafef3050bdaacd4f890e9dfb2c45ae779cd95d6f836095f281368927146a63a?s=24&d=retro", "openid": "myoung.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by myoung. ", "timestamp": "2017-06-22 23:23:16", "update_id": 90691, "user_id": 91, "id": 625802, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2017-06-23 21:54:02", "update_id": 90691, "user_id": 91, "id": 626372, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "works fine for me in a VM", "timestamp": "2017-06-25 15:12:12", "update_id": 90691, "user_id": 739, "id": 627026, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "cserpentis", "email": "cserpentis@gmail.com", "id": 739, "avatar": "https://seccdn.libravatar.org/avatar/a3febfef42f58ed535f3c3a3cf9743653cd774dbb6e4554e2ce7c847d9802b6c?s=24&d=retro", "openid": "cserpentis.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes", "timestamp": "2017-07-01 00:01:02", "update_id": 90691, "user_id": 91, "id": 629663, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by myoung. ", "timestamp": "2017-07-01 09:47:06", "update_id": 90691, "user_id": 91, "id": 629766, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2017-07-02 02:21:32", "update_id": 90691, "user_id": 91, "id": 629953, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "xen-4.6.5-7.fc24", "signed": true, "release_id": 14, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 1458870, "title": "CVE-2017-10911 xsa216 xen: blkif responses leak backend stack data (XSA-216)", "security": true, "parent": true, "feedback": []}, {"bug_id": 1458871, "title": "CVE-2017-10912 xsa217 xen: page transfer may allow PV guest to elevate privilege (XSA-217)", "security": true, "parent": true, "feedback": []}, {"bug_id": 1458872, "title": "CVE-2017-10913 CVE-2017-10914 xsa218 xen: Races in the grant table unmap code (XSA-218)", "security": true, "parent": true, "feedback": []}, {"bug_id": 1458873, "title": "CVE-2017-10915 xsa219 xen: x86: insufficient reference counts during shadow emulation (XSA-219)", "security": true, "parent": true, "feedback": []}, {"bug_id": 1458874, "title": "CVE-2017-10916 xsa220 xen: x86: PKRU and BND* leakage between vCPU-s (XSA-220)", "security": true, "parent": true, "feedback": []}, {"bug_id": 1458875, "title": "CVE-2017-10917 xsa221 xen: NULL pointer deref in event channel poll (XSA-221)", "security": true, "parent": true, "feedback": []}, {"bug_id": 1458876, "title": "CVE-2017-10918 xsa222 xen: stale P2M mappings due to insufficient error checking (XSA-222)", "security": true, "parent": true, "feedback": []}, {"bug_id": 1458877, "title": "CVE-2017-10919 xsa223 xen: ARM guest disabling interrupt may crash Xen (XSA-223)", "security": true, "parent": true, "feedback": []}, {"bug_id": 1458878, "title": "CVE-2017-10920 CVE-2017-10921 CVE-2017-10922 xsa224 xen: grant table operations mishandle reference counts (XSA-224)", "security": true, "parent": true, "feedback": []}, {"bug_id": 1459515, "title": "CVE-2017-10923 xsa225 xen: arm: vgic: Out-of-bound access when sending SGIs (XSA-225)", "security": true, "parent": true, "feedback": []}, {"bug_id": 1463231, "title": "CVE-2017-10917 xen: xsa221 xen: NULL pointer deref in event channel poll (XSA-221) [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1463247, "title": "CVE-2017-10911 CVE-2017-10912 CVE-2017-10913 CVE-2017-10914 CVE-2017-10915 CVE-2017-10916 CVE-2017-10918 CVE-2017-10919 CVE-2017-10920 CVE-2017-10921 CVE-2017-10922 CVE-2017-10923 xen: various flaws [fedora-all]", "security": true, "parent": false, "feedback": []}], "updateid": "FEDORA-2017-b3bdaf58bc", "karma": 1, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}