EUVD-2017-2553

Malware in sbrugna...

OracleVM 3.2 : xen (OVMSA-2017-0159)

The remote OracleVM system is missing necessary patches to address critical security updates : - The code of OVM3.2.9 is quite old, there is no getpage/putpage pair to protect the ownership and references of page table page which is mapped in emulatemapdest. This patch fix it by adding getpage in...

Fedora 26 : xen (2017-5c6a9b07a3)

xen: various flaws 1463247 blkif responses leak backend stack data XSA-216 page transfer may allow PV guest to elevate privilege XSA-217 Races in the grant table unmap code XSA-218 x86: insufficient reference counts during shadow emulation XSA-219 x86: PKRU and BND leakage between vCPU-s XSA-220...

CVE-2017-10915

The shadow-paging feature in Xen through 4.8.x mismanages page references and consequently introduces a race condition, which allows guest OS users to obtain Xen privileges, aka XSA-219...

Race condition

The shadow-paging feature in Xen through 4.8.x mismanages page references and consequently introduces a race condition, which allows guest OS users to obtain Xen privileges, aka XSA-219...

CVE-2017-10915

The shadow-paging feature in Xen through 4.8.x mismanages page references and consequently introduces a race condition, which allows guest OS users to obtain Xen privileges, aka XSA-219...

CVE-2017-10915

The shadow-paging feature in Xen through 4.8.x mismanages page references and consequently introduces a race condition, which allows guest OS users to obtain Xen privileges, aka XSA-219...

CVE-2017-10915

This CVE refers to Xen shadow-paging: through Xen up to 4.8.x, incorrect reference counting in shadow paging leads to a race that can let a guest OS user gain Xen privileges (XSA-219). The Debian DLA-1132 entry notes patching and fixes for related Xen issues, but does not specify exact patched ve...

Fedora 24 : xen (2017-b3bdaf58bc)

xen: various flaws 1463247 blkif responses leak backend stack data XSA-216 page transfer may allow PV guest to elevate privilege XSA-217 Races in the grant table unmap code XSA-218 x86: insufficient reference counts during shadow emulation XSA-219 x86: PKRU and BND leakage between vCPU-s XSA-220...

SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2017:1742-1)

This update for xen fixes several issues. These security issues were fixed : - Page transfer might have allowed PV guest to elevate privilege XSA-217, bsc1042882 - Races in the grant table unmap code allowed for informations leaks and potentially privilege escalation XSA-218, bsc1042893 -...

Fedora 25 : xen (2017-c3149b5fcb)

xen: various flaws 1463247 blkif responses leak backend stack data XSA-216 page transfer may allow PV guest to elevate privilege XSA-217 Races in the grant table unmap code XSA-218 x86: insufficient reference counts during shadow emulation XSA-219 x86: PKRU and BND leakage between vCPU-s XSA-220...