5 matches found
SUSE SLES10 Security Update : Xen (SUSE-SU-2015:1643-1)
Xen was updated to fix the following security issues : CVE-2015-5154: Host code execution via IDE subsystem CD-ROM. bsc938344 CVE-2015-3209: Heap overflow in QEMU's pcnet controller allowing guest to host escape. bsc932770 CVE-2015-4164: DoS through iret hypercall handler. bsc932996 CVE-2015-5165...
Fedora 21 : xen-4.4.3-3.fc21 (2015-15946)
libxl fails to honour readonly flag on disks with qemu-xen XSA-142 possible fix ---- update to xen-4.4.3, including Use after free in QEMU/Xen block unplug protocol XSA-139, CVE-2015-5166, QEMU leak of uninitialized heap memory in rtl8139 device model XSA-140, CVE-2015-5165 Note that Tenable...
Qemu: rtl8139 uninitialized heap memory information leakage to guest (XSA-140)
An information leak flaw was found in the way QEMU's RTL8139 emulation implementation processed network packets under RTL8139 controller's C+ mode of operation. An unprivileged guest user could use this flaw to read up to 65 KB of uninitialized QEMU heap memory...
Qemu: rtl8139 uninitialized heap memory information leakage to guest (XSA-140)
An information leak flaw was found in the way QEMU's RTL8139 emulation implementation processed network packets under RTL8139 controller's C+ mode of operation. An unprivileged guest user could use this flaw to read up to 65 KB of uninitialized QEMU heap memory...
SUSE SLED11 Security Update : xen (SUSE-SU-2015:1479-2)
xen was updated to fix the following security issues : - CVE-2015-5165: QEMU leak of uninitialized heap memory in rtl8139 device model bsc939712, XSA-140 - CVE-2015-5166: Use after free in QEMU/Xen block unplug protocol bsc939709, XSA-139 - CVE-2015-2751: Certain domctl operations could have be...