[SECURITY] [DLA 614-1] xen security update

Package : xen Version : 4.1.6.lts1-2 CVE ID : CVE-2016-7092 CVE-2016-7094 Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2016-7092 XSA-185 Jeremie Boutoille of Quarkslab and Shangcong Lua...

DSA-3663-1 xen - security update

Bulletin has no description...

Debian Security Advisory DSA 3663-1 (xen - security update)

Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2016-7092 XSA-185 Jeremie Boutoille of Quarkslab and Shangcong Luan of Alibaba discovered a flaw in the handling of L3 pagetable entries,...

Xen Local Elevation of Privilege Vulnerability (CNVD-2016-07435)

Xen is an open source virtual machine monitor product developed at the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. Xen is vulnerable to a local privile...

CVE-2016-7093

Xen 4.5.3, 4.6.3, and 4.7.x allow local HVM guest OS administrators to overwrite hypervisor memory and consequently gain host OS privileges by leveraging mishandling of instruction pointer truncation during emulation...

x86: Disallow L3 recursive pagetable for 32-bit PV guests

ISSUE DESCRIPTION On real hardware, a 32-bit PAE guest must leave the USER and RW bit clear in L3 pagetable entries, but the pagetable walk behaves as if they were set. The L3 entries are cached in processor registers, and don't actually form part of the pagewalk. When running a 32-bit PV guest o...

xen-kernel -- x86: Mishandling of instruction pointer truncation during emulation

The Xen Project reports: When emulating HVM instructions, Xen uses a small i-cache for fetches from guest memory. The code that handles cache misses does not check if the address from which it fetched lies within the cache before blindly writing to it. As such it is possible for the guest to...

How to Collect SSR for Citrix Insight Services (CIS) Using the CLI in Citrix Hypervisor 8.2 CU1

How to Collect Data for Citrix Insight Service CIS using the CLI in Citrix Hypervisor 8.2 CU1 and later without the use of XenCenter...

[SECURITY] Fedora 23 Update: xen-4.5.3-9.fc23

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

DEBIAN-CVE-2016-5412

arch/powerpc/kvm/book3shvrmhandlers.S in the Linux kernel through 4.7 on PowerPC platforms, when CONFIGKVMBOOK3S64HV is enabled, allows guest OS users to cause a denial of service host OS infinite loop by making a HCEDE hypercall during the existence of a suspended transaction...

[SECURITY] Fedora 24 Update: xen-4.6.3-4.fc24

This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...

VMware vSphere Hypervisor (ESXi) HTTP Response Injection

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2016-063 Product: VMware vSphere Hypervisor ESXi Manufacturer: VMware, Inc. Affected Versions: VMware ESXi 6.0.0 build 3380124 Update 1 VMware vCenter Server 6.0 U2 Tested Versions: VMware ESXi 6.0.0 build 3380124 Update 1...

VMware Releases Security Update

VMware has released a security update to address vulnerabilities in vCenter Server, vSphere Hypervisor ESXi, Workstation Pro, Workstation Player, Fusion, and Tools. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system. US-CERT encourages...

Unable to Communicate With Hypervisor When Using XenDesktop Setup Wizard

Unable to Communicate with Hypervisor when using XenDesktop Setup Wizard. Logs display, "object reference not set to instance of an object" When running XenDesktop Setup Wizard, error states, "cannot connect to hypervisor" Logs shows an error when checking a particular hosting unit. Checked Host...

Xen Privilege Escalation (XSA-182) (Bunker Buster)

According to its self-reported version number, the remote Xen hypervisor is affected by a privilege escalation vulnerability in the paravirtualization PV pagetable implementation due to incorrect usage of fast-paths for making updates to pre-existing pagetable entries. An attacker with...

CVE-2016-6259

Xen 4.5.x through 4.7.x do not implement Supervisor Mode Access Prevention SMAP whitelisting in 32-bit exception and event delivery, which allows local 32-bit PV guest OS kernels to cause a denial of service hypervisor and VM crash by triggering a safety check...

DEBIAN-CVE-2016-6259

Xen 4.5.x through 4.7.x do not implement Supervisor Mode Access Prevention SMAP whitelisting in 32-bit exception and event delivery, which allows local 32-bit PV guest OS kernels to cause a denial of service hypervisor and VM crash by triggering a safety check...

ALPINE-CVE-2016-6259

Xen 4.5.x through 4.7.x do not implement Supervisor Mode Access Prevention SMAP whitelisting in 32-bit exception and event delivery, which allows local 32-bit PV guest OS kernels to cause a denial of service hypervisor and VM crash by triggering a safety check...

UBUNTU-CVE-2016-6259

Xen 4.5.x through 4.7.x do not implement Supervisor Mode Access Prevention SMAP whitelisting in 32-bit exception and event delivery, which allows local 32-bit PV guest OS kernels to cause a denial of service hypervisor and VM crash by triggering a safety check...

CVE-2016-6259

CVE-2016-6259 affects Xen 4.5.x–4.7.x where SMAP whitelisting is not implemented for 32-bit exception/event delivery. This enables local 32-bit PV guests to trigger a safety check that can crash the hypervisor or VMs (DoS). The root cause is missing Supervisor Mode Access Prevention whitelisting ...