OVMSA-2016-0102 - xen security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2016-09-08 |
Description
[4.4.4-75.0.2.el6]
- BUILDINFO: commit=a83239e012959a65503ebb44ee9c54620a9d78f5
- evtchn-fifo: prevent use after free (Boris Ostrovsky) {CVE-2016-7154}
- x86/segment: Bounds check accesses to emulation ctxt->seg_reg[] (Andrew Cooper) {CVE-2016-7094}
- x86/shadow: Avoid overflowing sh_ctxt->seg_reg[] (Andrew Cooper) {CVE-2016-7094}
- x86/32on64: don't allow recursive page tables from L3 (Jan Beulich) {CVE-2016-7092}
Related CVEs
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
|
| Oracle VM 3.4 (x86_64) | xen-4.4.4-75.0.2.el6.src.rpm | 1319c14e91c14beafc4b148175f851ae6bbc9d779da2ddd391b93ecc2891c2bc | OVMBA-2024-0012 | ovm34_x86_64_latest |
| xen-4.4.4-75.0.2.el6.x86_64.rpm | dda1d2f5f99893a126e58309496af86d4b84a5c470e47c77dedfea9e19e84a8e | OVMBA-2024-0012 | ovm34_x86_64_latest |
| xen-tools-4.4.4-75.0.2.el6.x86_64.rpm | 810ecb987429f7d65ed7b8d4ff8c7d3e5ce0353a628ea72c8d78d9fdca8ca4ef | OVMBA-2024-0012 | ovm34_x86_64_latest |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
