5 matches found
XZ utils: Backdoor in release tarballs
Background XZ Utils is free general-purpose data compression software with a high compression ratio. Description A backdoor has been discovered in XZ utils. Please review the CVE identifier referenced below for details. Impact Our current understanding of the backdoor is that is does not affect...
SUSE-SU-2021:1648-1 Security update for xen
This update for xen fixes the following issues: Security issue fixed: - CVE-2021-28689: Fixed some x86 speculative vulnerabilities with bare non-shim 32-bit PV guests XSA-370 bsc1185104 - Make sure xencommons is in a format as expected by fillup. bsc1185682 Each comment needs to be followed by an...
SUSE SLES12 Security Update : xen (SUSE-SU-2021:1580-1)
This update for xen fixes the following issues : A recent systemd update caused a regression in 'xenstored.service' systemd now fails to track units that use systemd-notify. bsc1183790 Add a fix to delay between the call to 'systemd-notify' and the final exit of the wrapper script. bsc1185021,...
SUSE-SU-2021:1580-1 Security update for xen
This update for xen fixes the following issues: - A recent systemd update caused a regression in 'xenstored.service' systemd now fails to track units that use systemd-notify. bsc1183790 - Add a fix to delay between the call to 'systemd-notify' and the final exit of the wrapper script. bsc1185021,...
CVE-2016-7796
The managerdispatchnotifyfd function in systemd allows local users to cause a denial of service system hang via a zero-length message received over a notify socket, which causes an error to be returned and the notification handler to be disabled...