GSD-2022-1005710 xen/grants: prevent integer overflow in gnttab_dma_alloc_pages()

xen/grants: prevent integer overflow in gnttabdmaallocpages This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.142 by commit...

GSD-2022-1000937 xen/gnttab: fix gnttab_end_foreign_access() without page specified

xen/gnttab: fix gnttabendforeignaccess without page specified This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.306 by commit...

GSD-2022-1000895 xen/gnttab: fix gnttab_end_foreign_access() without page specified

xen/gnttab: fix gnttabendforeignaccess without page specified This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.234 by commit...

GSD-2022-1000870 xen/gnttab: fix gnttab_end_foreign_access() without page specified

xen/gnttab: fix gnttabendforeignaccess without page specified This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.184 by commit...

GSD-2022-1000823 xen/gnttab: fix gnttab_end_foreign_access() without page specified

xen/gnttab: fix gnttabendforeignaccess without page specified This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.105 by commit...

GSD-2022-1000757 xen/gnttab: fix gnttab_end_foreign_access() without page specified

xen/gnttab: fix gnttabendforeignaccess without page specified This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.28 by commit...

GSD-2022-1000756 xen/netfront: react properly to failing gnttab_end_foreign_access_ref()

xen/netfront: react properly to failing gnttabendforeignaccessref This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.28 by commit...

GSD-2022-1000686 xen/gnttab: fix gnttab_end_foreign_access() without page specified

xen/gnttab: fix gnttabendforeignaccess without page specified This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.14 by commit...

Unbreakable Enterprise kernel security update

4.14.35-2047.502.4 - Revert 'rds: ib: Remove two ibmodifyqp calls' Sharath Srinivasan Orabug: 32715567 - uek-rpm: Update SecureBoot Digicert 2021 certificates Somasundaram Krishnasamy Orabug: 32532514 4.14.35-2047.502.3 - video: hypervfb: Fix the mmap regression for v5.4.y and older Dexuan Cui...

UBUNTU-CVE-2017-14318

An issue was discovered in Xen 4.5.x through 4.9.x. The function gnttabcacheflush handles GNTTABOPcacheflush grant table operations. It checks to see if the calling domain is the owner of the page that is to be operated on. If it is not, the owner's grant table is checked to see if a grant mappin...

OracleVM 3.2 : xen (OVMSA-2017-0149)

The remote OracleVM system is missing necessary patches to address critical security updates : - From e26560a4b056dad6d85ffd9ebfad9565f210a9cc Mon Sep 17 00:00:00 2001 From: Jan Beulich Date: Wed, 30 May 2012 09:22:17 +0100 Subject: PATCH gnttab: don't use domain lock for serialization Instead us...

OracleVM 3.4 : xen (OVMSA-2017-0116)

The remote OracleVM system is missing necessary patches to address critical security updates : - BUILDINFO: xen commit=74b662e79bc874fe8ad8a93d2891e6569c380004 - BUILDINFO: QEMU upstream commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff - BUILDINFO: QEMU traditional...

OracleVM 3.3 : xen (OVMSA-2015-0067)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86/traps: loop in the correct direction in compatiret This is XSA-136. CVE-2015-4164 - pcnet: force the buffer access to be in bounds during tx 4096 is the maximum length per TMD and it is also...

OracleVM 3.2 : xen (OVMSA-2013-0085)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86/HVM: only allow ring 0 guest code to make hypercalls Anything else would allow for privilege escalation. This is CVE-2013-4554 / XSA-76. CVE-2013-4554 - x86: restrict XENDOMCTLgetmemlist Coverity ...

OracleVM 2.2 : xen (OVMSA-2013-0088)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86/HVM: only allow ring 0 guest code to make hypercalls XSA-76 Jan Beulich 17822325 CVE-2013-4554 - x86: restrict XENDOMCTLgetmemlist XSA-74 Jan Beulich 17821907 CVE-2013-4553 - gnttab: correct locki...

OracleVM 3.1 : xen (OVMSA-2013-0087)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86/HVM: only allow ring 0 guest code to make hypercalls Anything else would allow for privilege escalation. This is CVE-2013-4554 / XSA-76. CVE-2013-4554 - x86: restrict XENDOMCTLgetmemlist Coverity ...

kernel security and bug fix update

kernel 2.6.18-371.4.1 - char ipmi: fix message handling during panics Tony Camuso 1049731 995293 - net igb: Use 32bit mask calculating the flow control watermarks Stefan Assmann 1041694 1036115 - fs NTLM auth and sign - Use appropriate server challenge Sachin Prabhu 1029865 1018286 - xen gnttab:...