Mageia: Security Advisory (MGASA-2017-0012)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:2100-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:2533-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2016:2100-1 Security update for xen

This update for xen fixes the several issues. These security issues were fixed: - CVE-2014-3672: The qemu implementation in libvirt Xen allowed local guest OS users to cause a denial of service host disk consumption by writing to stdout or stderr bsc981264. - CVE-2016-3158: The xrstor function di...

[SECURITY] [DLA 571-1] xen security update

Package : xen Version : 4.1.6.lts1-1 CVE ID : CVE-2014-3672 CVE-2016-3158 CVE-2016-3159 CVE-2016-3710 CVE-2016-3712 CVE-2016-3960 CVE-2016-4480 CVE-2016-6258 Debian Bug : Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifi...

OracleVM 3.4 : xen (OVMSA-2016-0088) (Bunker Buster)

The remote OracleVM system is missing necessary patches to address critical security updates : - BUILDINFO: commit=aff08b43b1a504aa14a0fce65302ccf515b69fdf - Remove unsafe bits from the modl?entry fastpath Andrew Cooper CVE-2016-6258 - x86/mm: fully honor PS bits in guest page table walks Jan...

Debian DSA-3554-1 : xen - security update

Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2016-3158, CVE-2016-3159 XSA-172 Jan Beulich from SUSE discovered that Xen does not properly handle writes to the hardware FSW.ES bit whe...

[SECURITY] [DSA 3554-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3554-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 21, 2016 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3554-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3554-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 21, 2016 https://www.debian.org/security/faq -...

DSA-3554-1 xen - security update

Bulletin has no description...

Debian Security Advisory DSA 3554-1 (xen - security update)

Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2016-3158, CVE-2016-3159 XSA-172 Jan Beulich from SUSE discovered that Xen does not properly handle writes to the hardware FSW.ES bit when...

CVE-2016-3159

The fpufxrstor function in arch/x86/i387.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits...

CVE-2016-3159

CVE-2016-3159 affects Xen 4.x on AMD64, where the fpu_fxrstor handler in arch/x86/i387.c mishandles writes to the FSW.ES bit, enabling a local guest to read sensitive register content from another guest by exploiting pending exception/mask bits. The issue stems from an incorrect fix for CVE-2013-...

Fedora 22 : xen-4.5.3-1.fc22 (2016-5f196e4e4a)

update to 4.5.3 ---- broken AMD FPU FIP/FDP/FOP leak workaround XSA-172, CVE-2016-3158, CVE-2016-3159 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...