FEDORA-2017-c432db2971

security update in Fedora 27 for xen

Status: stable 2 years ago

xen: various flaws (#1501391) multiple MSI mapping issues on x86 [XSA-237] DMOP map/unmap missing argument checks [XSA-238] hypervisor stack leak in x86 I/O intercept code [XSA-239] Unlimited recursion in linear pagetable de-typing [XSA-240] Stale TLB entry due to page type release race [XSA-241] page type reference leak on x86 [XSA-242] x86: Incorrect handling of self-linear shadow mappings with translated guests [XSA-243] x86: Incorrect handling of IST settings during CPU hotplug [XSA-244]

Comments 7

This update has been submitted for testing by myoung.

This update has been pushed to testing.

Works

karma: +1

This update has reached 3 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for batched by myoung.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+1
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago

Related Bugs 9

00 #1499817 CVE-2017-15590 xsa237 xen: multiple MSI mapping issues on x86 (XSA-237)
00 #1499818 CVE-2017-15591 xsa238 xen: DMOP map/unmap missing argument checks (XSA-238)
00 #1499819 CVE-2017-15589 xsa239 xen: hypervisor stack leak in x86 I/O intercept code (XSA-239)
00 #1499820 CVE-2017-15595 xsa240 xen: Unlimited recursion in linear pagetable de-typing (XSA-240)
00 #1499821 CVE-2017-15588 xsa241 xen: Stale TLB entry due to page type release race (XSA-241)
00 #1499822 CVE-2017-15593 xsa242 xen: page type reference leak on x86 (XSA-242)
00 #1499823 CVE-2017-15592 xsa243 xen: x86: Incorrect handling of self-linear shadow mappings with translated guests (XSA-243)
00 #1499824 CVE-2017-15594 xsa244 xen: x86: Incorrect handling of IST settings during CPU hotplug (XSA-244)
00 #1501391 CVE-2017-15588 CVE-2017-15589 CVE-2017-15590 CVE-2017-15591 CVE-2017-15592 CVE-2017-15593 CVE-2017-15594 CVE-2017-15595 xen: various flaws [fedora-all]

Automated Test Results