[SECURITY] Fedora 17 Update: xen-4.1.3-6.fc17

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 16 Update: xen-4.1.3-4.fc16

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Fedora 16 : xen-4.1.3-4.fc16 (2012-18249)

A guest can block a cpu by setting a bad VCPU deadline XSA 20, CVE-2012-4535 876198 HVM guest can use invalid pirq values to crash xen XSA 21, CVE-2012-4536 876200 HVM guest can exhaust p2m table crashing xen XSA 22, CVE-2012-4537 876203 PAE HVM guest can crash hypervisor XSA-23, CVE-2012-4538...

Fedora 17 : xen-4.1.3-6.fc17 (2012-18242)

A guest can block a cpu by setting a bad VCPU deadline XSA 20, CVE-2012-4535 876198 HVM guest can use invalid pirq values to crash xen XSA 21, CVE-2012-4536 876200 HVM guest can exhaust p2m table crashing xen XSA 22, CVE-2012-4537 876203 PAE HVM guest can crash hypervisor XSA-23, CVE-2012-4538...

Fedora Update for xen FEDORA-2012-18242

Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2012-18242 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

CVE-2012-4539

Xen 4.0 through 4.2, when running 32-bit x86 PV guests on 64-bit hypervisors, allows local guest OS administrators to cause a denial of service infinite loop and hang or crash via invalid arguments to GNTTABOPgetstatusframes, aka "Grant table hypercall infinite loop DoS vulnerability."...

Design/Logic Flaw

Xen 4.0 through 4.2, when running 32-bit x86 PV guests on 64-bit hypervisors, allows local guest OS administrators to cause a denial of service infinite loop and hang or crash via invalid arguments to GNTTABOPgetstatusframes, aka "Grant table hypercall infinite loop DoS vulnerability."...

CVE-2012-4539

Xen 4.0 through 4.2, when running 32-bit x86 PV guests on 64-bit hypervisors, allows local guest OS administrators to cause a denial of service infinite loop and hang or crash via invalid arguments to GNTTABOPgetstatusframes, aka "Grant table hypercall infinite loop DoS vulnerability."...

CVE-2012-4539

Xen 4.0 through 4.2, when running 32-bit x86 PV guests on 64-bit hypervisors, allows local guest OS administrators to cause a denial of service infinite loop and hang or crash via invalid arguments to GNTTABOPgetstatusframes, aka "Grant table hypercall infinite loop DoS vulnerability."...

Fedora Update for xen FEDORA-2012-17204

Check for the Version of xen OpenVAS Vulnerability Test Fedora Update for xen FEDORA-2012-17204 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

[SECURITY] Fedora 18 Update: xen-4.2.0-3.fc18

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Grant table hypercall infinite loop DoS vulnerability

ISSUE DESCRIPTION Due to inappropriate duplicate use of the same loop control variable, passing bad arguments to GNTTABOPgetstatusframes can cause an infinite loop in the compat hypercall handler. IMPACT A malicious guest administrator can trigger the bug. If the Xen watchdog is enabled, the whol...

[SECURITY] Fedora 17 Update: xen-4.1.3-5.fc17

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

[SECURITY] Fedora 16 Update: xen-4.1.3-3.fc16

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

Side-Channel Attack Steals Crypto Key from Co-Located Virtual Machines

Side-channel attacks against cryptography keys have, until now, been limited to physical machines. Researchers have long made accurate determinations about crypto keys by studying anything from variations in power consumption to measuring how long it takes for a computation to complete. A team of...

More VMware ESX Source Code Posted Online

For the third time this year, VMware ESX source code has been posted online. A hacker known as Stun claiming to be affiliated with Anonymous tweeted a link to a torrent site hosting the stolen VMkernel source code. VMware director of platform security Iain Mulholland acknowledged the breach on...

DEBIAN-CVE-2012-2625

The PyGrub boot loader in Xen unstable before changeset 25589:60f09d1ab1fe, 4.2.x, and 4.1.x allows local para-virtualized guest users to cause a denial of service memory consumption via a large 1 bzip2 or 2 lzma compressed kernel image...

Important: Red Hat Security Advisory: rhev-hypervisor6 security and bug fix update

An updated rhev-hypervisor6 package that fixes one security issue and one bug is now available. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

Important: Red Hat Security Advisory: rhev-hypervisor6 security and bug fix update

An updated rhev-hypervisor6 package that fixes multiple security issues and one bug is now available. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

(RHSA-2012:1324) Important: rhev-hypervisor5 security and bug fix update

The rhev-hypervisor5 package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor is a dedicated Kernel-based Virtual Machine KVM hypervisor. It includes everything necessary to run and manage virtual machines: A subset of the Re...