Mehrere Probleme in Xen
ID: | FEDORA-2015-5295 |
Distribution: | Fedora |
Plattformen: | Fedora 22 |
Datum: | Di, 21. April 2015, 23:30 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2751
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2752 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2756 |
Applikationen: | Xen |
Originalnachricht |
|
Name : xen Product : Fedora 22 Version : 4.5.0 Release : 7.fc22 URL : http://xen.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: Long latency MMIO mapping operations are not preemptible [XSA-125, CVE-2015-2752] Unmediated PCI command register access in qemu [XSA-126, CVE-2015-2756] Certain domctl operations may be abused to lock up the host [XSA-127, CVE-2015-2751] -------------------------------------------------------------------------------- References: [ 1 ] Bug #1203732 - CVE-2015-2752 xen: long latency MMIO mapping operations are not preemptible (xsa125) https://bugzilla.redhat.com/show_bug.cgi?id=1203732 [ 2 ] Bug #1203737 - CVE-2015-2756 xen: unmediated PCI command register access in qemu (xsa126) https://bugzilla.redhat.com/show_bug.cgi?id=1203737 [ 3 ] Bug #1203745 - CVE-2015-2751 xen: certain domctl operations may be abused to lock up the host https://bugzilla.redhat.com/show_bug.cgi?id=1203745 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update xen' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce |