FEDORA-2022-d80cc73088 — security update for xen

stable

xen-4.16.2-2.fc37

FEDORA-2022-d80cc73088 created by myoung 3 years ago for Fedora 37

Arm: unbounded memory consumption for 2nd-level page tables [XSA-409, CVE-2022-33747] P2M pool freeing may take excessively long [XSA-410, CVE-2022-33746] lock order inversion in transitive grant copy handling [XSA-411, CVE-2022-33748]

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2022-d80cc73088

This update has been submitted for testing by myoung.

3 years ago

This update's test gating status has been changed to 'waiting'.

3 years ago

This update's test gating status has been changed to 'failed'.

3 years ago

This update's test gating status has been changed to 'passed'.

3 years ago

This update has been pushed to testing.

3 years ago

myoung edited this update.

3 years ago

This update has been submitted for stable by bodhi.

3 years ago

This update has been pushed to stable.

3 years ago

Please log in to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

passed

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

14 days

Dates

submitted

3 years ago

in testing

3 years ago

in stable

3 years ago

modified

3 years ago

Builds

xen-4.16.2-2.fc37

BZ#2135262 CVE-2022-33748 xen: lock order inversion in transitive grant copy handling

BZ#2135263 CVE-2022-33748 xen: lock order inversion in transitive grant copy handling [fedora-all]

BZ#2135267 CVE-2022-33747 xen: unbounded memory consumption for 2nd-level page tables

BZ#2135268 CVE-2022-33747 xen: unbounded memory consumption for 2nd-level page tables [fedora-all]

BZ#2135640 CVE-2022-33746 xen: P2M pool freeing may take excessively long

BZ#2135641 CVE-2022-33746 xen: P2M pool freeing may take excessively long [fedora-all]

xen-4.16.2-2.fc37

Automated Test Results

passed