OVMSA-2015-0031 - xen security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2015-03-10 |
Description
[4.3.0-55.el6.22.12]
- x86emul: fully ignore segment override for register-only operations
For ModRM encoded instructions with register operands we must not
overwrite ea.mem.seg (if a - bogus in that case - segment override was
present) as it aliases with ea.reg.
This is CVE-2015-2151 / XSA-123.
Signed-off-by: Jan Beulich
Reviewed-by: Tim Deegan
Reviewed-by: Keir Fraser
Acked-by: Chuck Anderson
Reviewed-by: John Haxby [bug 20659547] {CVE-2015-2151}
Related CVEs
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
|
| Oracle VM 3.3 (x86_64) | xen-4.3.0-55.el6.22.12.src.rpm | 45430722c3bff0c10f054b2f3cb7761f4f0fb1f227044a39dfdfbb1f3cc12117 | OVMBA-2024-0012 | ovm3_x86_64_3.3_patch |
| xen-4.3.0-55.el6.22.12.x86_64.rpm | b11053da5a6048c75faa35ce7de0a3e0245da3269e44581efd855623f182cb23 | OVMBA-2024-0012 | ovm3_x86_64_3.3_patch |
| xen-tools-4.3.0-55.el6.22.12.x86_64.rpm | f6f22e87f902ebb4dfd3627d3eb069a7bee05d8cdd8971abd8c605bca782dc70 | OVMBA-2024-0012 | ovm3_x86_64_3.3_patch |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
