Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2012:1130
HistoryJul 31, 2012 - 12:00 a.m.

(RHSA-2012:1130) Moderate: xen security update

2012-07-3100:00:00
access.redhat.com
12

2.7 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:S/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

26.8%

JSON

The xen packages contain administration tools and the xend service for
managing the kernel-xen kernel for virtualization on Red Hat Enterprise
Linux.

A flaw was found in the way the pyGrub boot loader handled compressed
kernel images. A privileged guest user in a para-virtualized guest (a DomU)
could use this flaw to create a crafted kernel image that, when attempting
to boot it, could result in an out-of-memory condition in the privileged
domain (the Dom0). (CVE-2012-2625)

Red Hat would like to thank Xinli Niu for reporting this issue.

All users of xen are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue. After installing the
updated packages, the xend service must be restarted for this update to
take effect.

OSVersionArchitecturePackageVersionFilename
RedHat5x86_64xen-devel< 3.0.3-135.el5_8.4xen-devel-3.0.3-135.el5_8.4.x86_64.rpm
RedHat5srcxen< 3.0.3-135.el5_8.4xen-3.0.3-135.el5_8.4.src.rpm
RedHat5x86_64xen-debuginfo< 3.0.3-135.el5_8.4xen-debuginfo-3.0.3-135.el5_8.4.x86_64.rpm
RedHat5x86_64xen< 3.0.3-135.el5_8.4xen-3.0.3-135.el5_8.4.x86_64.rpm
RedHat5i386xen-libs< 3.0.3-135.el5_8.4xen-libs-3.0.3-135.el5_8.4.i386.rpm
RedHat5i386xen-debuginfo< 3.0.3-135.el5_8.4xen-debuginfo-3.0.3-135.el5_8.4.i386.rpm
RedHat5ia64xen< 3.0.3-135.el5_8.4xen-3.0.3-135.el5_8.4.ia64.rpm
RedHat5ia64xen-libs< 3.0.3-135.el5_8.4xen-libs-3.0.3-135.el5_8.4.ia64.rpm
RedHat5ia64xen-debuginfo< 3.0.3-135.el5_8.4xen-debuginfo-3.0.3-135.el5_8.4.ia64.rpm
RedHat5x86_64xen-libs< 3.0.3-135.el5_8.4xen-libs-3.0.3-135.el5_8.4.x86_64.rpm
Rows per page:
1-10 of 131

Related

fedora 28
nessus 18
openvas 73
debiancve 1
oraclelinux 1
veracode 1
cve 1
prion 1
ubuntucve 1
centos 1
suse 7
redhat 1
fedora
fedora
[SECURITY] Fedora 17 Update: xen-4.1.2-17.fc17
2012-05-26 22:23:22
[SECURITY] Fedora 17 Update: xen-4.1.2-20.fc17
2012-06-26 00:52:23
[SECURITY] Fedora 16 Update: xen-4.1.2-8.fc16
2012-06-26 00:42:08
nessus
nessus
Scientific Linux Security Update : xen on SL5.x i386/x86_64 (20120731)
2012-08-03 00:00:00
Oracle Linux 5 : xen (ELSA-2012-1130)
2013-07-12 00:00:00
Fedora 17 : xen-4.1.2-17.fc17 (2012-8083)
2012-05-29 00:00:00
openvas
openvas
RedHat Update for xen RHSA-2012:1130-01
2012-08-03 00:00:00
CentOS Update for xen CESA-2012:1130 centos5
2012-08-03 00:00:00
RedHat Update for xen RHSA-2012:1130-01
2012-08-03 00:00:00
debiancve
debiancve
CVE-2012-2625
2012-10-31 16:55:00
oraclelinux
oraclelinux
xen security update
2012-07-31 00:00:00
veracode
veracode
Denial Of Service (Dos)
2019-01-15 08:55:07
cve
cve
CVE-2012-2625
2012-10-31 16:55:00
prion
prion
Code injection
2012-10-31 16:55:00
ubuntucve
ubuntucve
CVE-2012-2625
2012-10-31 00:00:00
centos
centos
xen security update
2012-07-31 22:57:53
suse
suse
Security update for Xen (important)
2012-08-27 17:08:38
Security update for Xen (important)
2012-09-07 20:08:40
Security update for Xen and libvirt (important)
2012-08-27 17:08:36
redhat
redhat
(RHSA-2012:1185) Moderate: rhev-hypervisor5 security and bug fix update
2012-08-21 00:00:00

2.7 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:S/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

26.8%

JSON
Related for RHSA-2012:1130
fedora28nessus18openvas73debiancve1oraclelinux1veracode1cve1prion1ubuntucve1centos1suse7redhat1