Stay Connected:

ELSA-2008-0194

ELSA-2008-0194 - xen security and bug fix update

Type:SECURITY
Severity:IMPORTANT
Release Date:2008-05-13

Description



[3.0.3-41.el5_1.5]
- Disable QEMU image format auto-detection CVE-2008-2004 (rhbz #444700)

[3.0.3-41.el5_1.4]
- Fix PVFB to validate frame buffer description (rhbz #443376)
- Fix PVFB to cope with bogus update requests (rhbz #368931)

[3.0.3-41.el5_1.3]
- Fix QEMU buffer overflow CVE-2007-5730 (rhbz #360381)
- Fix QEMU block device extents checking CVE-2008-0928 (rhbz #433560)

[3.0.3-41.el5_1.2]
- Fix FV O_DIRECT flushing (rhbz #435495)

[3.0.3-41.el5_1.1]
- Fixed xenbaked tmpfile flaw (CVE-2007-3919) (rhbz #350421)


Related CVEs


CVE-2007-3919
CVE-2007-5730
CVE-2008-0928
CVE-2008-1943
CVE-2008-1944
CVE-2008-2004

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 5 (i386) xen-3.0.3-41.el5_1.5.src.rpme293aaef7b30f797567079a485c0c866ELSA-2016-2963
xen-3.0.3-41.el5_1.5.i386.rpm8e89e2f245bf5700f7030fd4922e8f9fELSA-2016-2963
xen-devel-3.0.3-41.el5_1.5.i386.rpm9576eadf81c141cf893606ad3659bb03ELSA-2016-2963
xen-libs-3.0.3-41.el5_1.5.i386.rpm66663c3a040912f90afb691d17552ca3ELSA-2016-2963
Oracle Linux 5 (x86_64) xen-3.0.3-41.el5_1.5.src.rpme293aaef7b30f797567079a485c0c866ELSA-2016-2963
xen-3.0.3-41.el5_1.5.x86_64.rpm5526d97d3452d171008c67b3a68ebe30ELSA-2016-2963
xen-devel-3.0.3-41.el5_1.5.i386.rpm9576eadf81c141cf893606ad3659bb03ELSA-2016-2963
xen-devel-3.0.3-41.el5_1.5.x86_64.rpma1bb6ed0f42dfcd66fdb7239697442c4ELSA-2016-2963
xen-libs-3.0.3-41.el5_1.5.i386.rpm66663c3a040912f90afb691d17552ca3ELSA-2016-2963
xen-libs-3.0.3-41.el5_1.5.x86_64.rpm9c8980eefe762d16928b91b63d0b7679ELSA-2016-2963



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights