OVMSA-2015-0026 - xen security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2015-03-05 |
Description
[4.3.0-55.el6.22.11]
- pre-fill structures for certain HYPERVISOR_xen_version sub-ops
... avoiding to pass hypervisor stack contents back to the caller
through space unused by the respective strings.
This is XSA-122.
Acked-by: Jan Beulich
Signed-off-by: Chuck Anderson
Reviewed-by: John Haxby [bug 20588560] {CVE-2015-2045}
[4.3.0-55.el6.22.10]
- x86/HVM: return all ones on wrong-sized reads of system device I/O ports
So far the value presented to the guest remained uninitialized.
This is XSA-121.
Signed-off-by: Jan Beulich
Acked-by: Ian Campbell
Signed-off-by: Chuck Anderson
Reviewed-by: John Haxby [bug 20588167] {CVE-2015-2044}
Related CVEs
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
|
| Oracle VM 3.3 (x86_64) | xen-4.3.0-55.el6.22.11.src.rpm | 09f8fa102886ab890e347beefe331d540c8fb1de9f615af461d92829086b2ef3 | OVMBA-2024-0012 | ovm3_x86_64_3.3_patch |
| xen-4.3.0-55.el6.22.11.x86_64.rpm | c07b19c670b9abe7cf43a21ddf11f79146b01806333f4d576e968a872c9a137e | OVMBA-2024-0012 | ovm3_x86_64_3.3_patch |
| xen-tools-4.3.0-55.el6.22.11.x86_64.rpm | b9711368cfa9c47804c839aa55c64ee4743683291b91780d7cd61c23a27231ab | OVMBA-2024-0012 | ovm3_x86_64_3.3_patch |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
