OVMSA-2016-0178 - xen security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2016-12-13 |
Description
[4.1.3-25.el5.223.46]
- From: Jan Beulich
Subject: x86emul: CMPXCHG8B ignores operand size prefix
Otherwise besides mis-handling the instruction, the comparison failure
case would result in uninitialized stack data being handed back to the
guest in rDX:rAX (32 bits leaked for 32-bit guests, 96 bits for 64-bit
ones).
This is XSA-200.
Signed-off-by: Jan Beulich
Conflicts:
xen/arch/x86/x86_emulate/x86_emulate.c
Backported-by: Zhenzhong Duan
Reviewed-by: Boris Ostrovsky [bug 25180336]
Related CVEs
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
|
| Oracle VM 3.2 (x86_64) | xen-4.1.3-25.el5.223.46.src.rpm | 8a6e5e487e648401102fb2273fe7ed6d6abbfa88a611bcec8000f268168c0a25 | OVMBA-2024-0012 | ovm3_3.2.1_x86_64_patch |
| xen-4.1.3-25.el5.223.46.x86_64.rpm | 17ccc0056d4e6b54111b8293848d437668205180dbf7c7b3f434bf554ede47e4 | OVMBA-2024-0012 | ovm3_3.2.1_x86_64_patch |
| xen-devel-4.1.3-25.el5.223.46.x86_64.rpm | 9673b3436dc9daaf2507e6f5f46c09b185f66222f84e7fe44c336899873de02c | OVMSA-2019-0048 | ovm3_3.2.1_x86_64_patch |
| xen-tools-4.1.3-25.el5.223.46.x86_64.rpm | f2fd1889b133495f742eafd1c4012f8ae13aaf9ece18f0748d25cee08d354f29 | OVMBA-2024-0012 | ovm3_3.2.1_x86_64_patch |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
