Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 22: 2015-8194 Moderate Severity: Xen Floppy Privilege Escalation

fedora
Calendar Grey May 26, 2015
Dist Fedora Esm H88
Critical security patch available for Fedora 22 targeting potential privilege escalation through an emulated floppy disk. Ensure your system is secure!
Privilege escalation via emulated floppy disk drive [XSA-133, CVE-2015-3456] (#1221153)

Summary

This package contains the XenD daemon and xm command line

tools, needed to manage virtual machines running under the

Xen hypervisor

Update Information:

Privilege escalation via emulated floppy disk drive [XSA-133, CVE-2015-3456] (#1221153)

Topics%20covered

Topics Covered

security advisory Fedora privilege escalation software management Linux update Xen

Change Log

* Wed May 13 2015 Michael Young - 4.5.0-9 - Privilege escalation via emulated floppy disk drive [XSA-133, CVE-2015-3456] (#1221153)

References


[ 1 ] Bug #1218611 - CVE-2015-3456 qemu: fdc: out-of-bounds fifo buffer memory access https://bugzilla.redhat.com/show_bug.cgi?id=1218611

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update xen' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
important
Lowest
Low
Medium
High
Critical

Name: xen
Product: Fedora 22
Version: 4.5.0
Release: 9.fc22
URL: https://xenproject.org/
Summary: Xen is a virtual machine monitor

Topics%20covered

Topics Covered

security advisory Fedora privilege escalation software management Linux update Xen

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here