[SECURITY] [DSA 4723-1] xen security update

2020-07-1220:39:56

lists.debian.org

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

13.3%

JSON

Debian Security Advisory DSA-4723-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
July 12, 2020 https://www.debian.org/security/faq

Package : xen
CVE ID : CVE-2020-11739 CVE-2020-11740 CVE-2020-11741 CVE-2020-11742
CVE-2020-11743 CVE-2020-15563 CVE-2020-15564 CVE-2020-15565
CVE-2020-15566 CVE-2020-15567

Multiple vulnerabilities have been discovered in the Xen hypervisor,
which could result in denial of service, guest-to-host privilege
escalation or information leaks.

For the stable distribution (buster), these problems have been fixed in
version 4.11.4+24-gddaaccbbab-1~deb10u1.

We recommend that you upgrade your xen packages.

For the detailed security status of xen please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/xen

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian10amd64libxentoolcore1< 4.11.4+24-gddaaccbbab-1~deb10u1libxentoolcore1_4.11.4+24-gddaaccbbab-1~deb10u1_amd64.deb
Debian10arm64libxengnttab1-dbgsym< 4.11.4+24-gddaaccbbab-1~deb10u1libxengnttab1-dbgsym_4.11.4+24-gddaaccbbab-1~deb10u1_arm64.deb
Debian10armhflibxenstore3.0< 4.11.4+24-gddaaccbbab-1~deb10u1libxenstore3.0_4.11.4+24-gddaaccbbab-1~deb10u1_armhf.deb
Debian10armhflibxen-dev< 4.11.4+24-gddaaccbbab-1~deb10u1libxen-dev_4.11.4+24-gddaaccbbab-1~deb10u1_armhf.deb
Debian10armhfxen-utils-common< 4.11.4+24-gddaaccbbab-1~deb10u1xen-utils-common_4.11.4+24-gddaaccbbab-1~deb10u1_armhf.deb
Debian10i386libxencall1< 4.11.4+24-gddaaccbbab-1~deb10u1libxencall1_4.11.4+24-gddaaccbbab-1~deb10u1_i386.deb
Debian10arm64libxentoolcore1< 4.11.4+24-gddaaccbbab-1~deb10u1libxentoolcore1_4.11.4+24-gddaaccbbab-1~deb10u1_arm64.deb
Debian10armhflibxencall1-dbgsym< 4.11.4+24-gddaaccbbab-1~deb10u1libxencall1-dbgsym_4.11.4+24-gddaaccbbab-1~deb10u1_armhf.deb
Debian10i386libxencall1-dbgsym< 4.11.4+24-gddaaccbbab-1~deb10u1libxencall1-dbgsym_4.11.4+24-gddaaccbbab-1~deb10u1_i386.deb
Debian10amd64libxenevtchn1< 4.11.4+24-gddaaccbbab-1~deb10u1libxenevtchn1_4.11.4+24-gddaaccbbab-1~deb10u1_amd64.deb

OS	Version	Architecture	Package	Version	Filename
Debian	10	amd64	libxentoolcore1	< 4.11.4+24-gddaaccbbab-1~deb10u1	libxentoolcore1_4.11.4+24-gddaaccbbab-1~deb10u1_amd64.deb
Debian	10	arm64	libxengnttab1-dbgsym	< 4.11.4+24-gddaaccbbab-1~deb10u1	libxengnttab1-dbgsym_4.11.4+24-gddaaccbbab-1~deb10u1_arm64.deb
Debian	10	armhf	libxenstore3.0	< 4.11.4+24-gddaaccbbab-1~deb10u1	libxenstore3.0_4.11.4+24-gddaaccbbab-1~deb10u1_armhf.deb
Debian	10	armhf	libxen-dev	< 4.11.4+24-gddaaccbbab-1~deb10u1	libxen-dev_4.11.4+24-gddaaccbbab-1~deb10u1_armhf.deb
Debian	10	armhf	xen-utils-common	< 4.11.4+24-gddaaccbbab-1~deb10u1	xen-utils-common_4.11.4+24-gddaaccbbab-1~deb10u1_armhf.deb
Debian	10	i386	libxencall1	< 4.11.4+24-gddaaccbbab-1~deb10u1	libxencall1_4.11.4+24-gddaaccbbab-1~deb10u1_i386.deb
Debian	10	arm64	libxentoolcore1	< 4.11.4+24-gddaaccbbab-1~deb10u1	libxentoolcore1_4.11.4+24-gddaaccbbab-1~deb10u1_arm64.deb
Debian	10	armhf	libxencall1-dbgsym	< 4.11.4+24-gddaaccbbab-1~deb10u1	libxencall1-dbgsym_4.11.4+24-gddaaccbbab-1~deb10u1_armhf.deb
Debian	10	i386	libxencall1-dbgsym	< 4.11.4+24-gddaaccbbab-1~deb10u1	libxencall1-dbgsym_4.11.4+24-gddaaccbbab-1~deb10u1_i386.deb
Debian	10	amd64	libxenevtchn1	< 4.11.4+24-gddaaccbbab-1~deb10u1	libxenevtchn1_4.11.4+24-gddaaccbbab-1~deb10u1_amd64.deb