Mehrere Probleme in xen
ID: | FEDORA-2022-9f51d13fa3 |
Distribution: | Fedora |
Plattformen: | Fedora 37 |
Datum: | Do, 24. November 2022, 07:12 |
Referenzen: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42322
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42326 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42318 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42316 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42319 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42311 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23824 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42323 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42324 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42314 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42309 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42325 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42320 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42327 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42315 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42310 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42321 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42312 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42317 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42313 |
Applikationen: | Xen |
Originalnachricht |
|
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-9f51d13fa3 2022-11-24 01:24:26.774334 -------------------------------------------------------------------------------- Name : xen Product : Fedora 37 Version : 4.16.2 Release : 4.fc37 URL : http://xen.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: x86: Multiple speculative security issues [XSA-422, CVE-2022-23824] ---- x86: unintended memory sharing between guests [XSA-412, CVE-2022-42327] Xenstore: Guests can crash xenstored [XSA-414, CVE-2022-42309] Xenstore: Guests can create orphaned Xenstore nodes [XSA-415, CVE-2022-42310] Xenstore: guests can let run xenstored out of memory [XSA-326, CVE-2022-42311, CVE-2022-42312, CVE-2022-42313, CVE-2022-42314, CVE-2022-42315, CVE-2022-42316, CVE-2022-42317, CVE-2022-42318] Xenstore: Guests can cause Xenstore to not free temporary memory [XSA-416, CVE-2022-42319] Xenstore: Guests can get access to Xenstore nodes of deleted domains [XSA-417, CVE-2022-42320] Xenstore: Guests can crash xenstored via exhausting the stack [XSA-418, CVE-2022-42321] Xenstore: Cooperating guests can create arbitrary numbers of nodes [XSA-419, CVE-2022-42322, CVE-2022-42323] Oxenstored 32->31 bit integer truncation issues [XSA-420, CVE-2022-42324] Xenstore: Guests can create arbitrary number of nodes via transactions [XSA-421, CVE-2022-42325, CVE-2022-42326] -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 8 2022 Michael Young |