OracleVM 3.1 : xen (OVMSA-2013-0057)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86: fix page refcount handling in page table pin error path In the original patch 7 of the series addressing XSA-45 I mistakenly took the addition of the call to getpagelight in allocpagetype to cove...

CVE-2013-1432

Xen 4.1.x and 4.2.x, when the XSA-45 patch is in place, does not properly maintain references on pages stored for deferred cleanup, which allows local PV guest kernels to cause a denial of service premature page free and hypervisor crash or possibly gain privileges via unspecified vectors...

Code injection

Xen 4.1.x and 4.2.x, when the XSA-45 patch is in place, does not properly maintain references on pages stored for deferred cleanup, which allows local PV guest kernels to cause a denial of service premature page free and hypervisor crash or possibly gain privileges via unspecified vectors...

CVE-2013-1432

Xen 4.1.x and 4.2.x, when the XSA-45 patch is in place, does not properly maintain references on pages stored for deferred cleanup, which allows local PV guest kernels to cause a denial of service premature page free and hypervisor crash or possibly gain privileges via unspecified vectors...

CVE-2013-1432

CVE-2013-1432 affects Xen 4.1.x and 4.2.x when the XSA-45 patch is applied. The issue is a page reference counting/deferred cleanup handling bug on pages stored for deferred cleanup, which can let local PV guest kernels trigger a denial of service (premature page free and hypervisor crash) and ma...

Fedora 19 : xen-4.2.2-10.fc19 (2013-11837)

XSA-45/CVE-2013-1918 breaks page reference counting let pygrub handle set default='$nextentry' line in F19 libxl: Set vfb and vkb devid if not done so by the caller add upstream patch for PCI passthrough problems after XSA-46 xenstore permissions not set correctly by libxl XSA-57 Note that Tenabl...

Fedora 18 : xen-4.2.2-10.fc18 (2013-11874)

XSA-45/CVE-2013-1918 breaks page reference counting let pygrub handle set default='$nextentry' line in F19 libxl: Set vfb and vkb devid if not done so by the caller Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...

Fedora 17 : xen-4.1.5-9.fc17 (2013-11871)

XSA-45/CVE-2013-1918 breaks page reference counting let pygrub handle set default='$nextentry' line in F19 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as muc...

Page reference counting error due to XSA-45/CVE-2013-1918 fixes

ISSUE DESCRIPTION The XSA-45/CVE-2013-1918 patch making error handling paths preemptible broke page reference counting by not retaining a reference on pages stored for deferred cleanup. This would lead to the hypervisor prematurely attempting to free the page, generally crashing upon finding the...

Fedora 18 : xen-4.2.2-3.fc18 (2013-7426)

PV guests can use non-preemptible long latency operations to mount a denial of service attack on the whole system XSA-45, CVE-2013-1918, malicious guests can inject interrupts through bridge devices to mount a denial of service attack on the whole system XSA-49, CVE-2013-1952 Note that Tenable...