Fedora 28: 2018-dbebca30d0 Moderate: Xen Information Leak And Crash
fedora
April 29, 2018
Information leak via crafted user-supplied CDROM [XSA-258] (#1571867) x86: PV guest may crash Xen with XPTI [XSA-259] (#1571878)
Summary
This package contains the XenD daemon and xm command line
tools, needed to manage virtual machines running under the
Xen hypervisor
Information leak via crafted user-supplied CDROM [XSA-258] (#1571867) x86: PV
guest may crash Xen with XPTI [XSA-259] (#1571878)
* Wed Apr 25 2018 Michael Young
- Information leak via crafted user-supplied CDROM [XSA-258] (#1571867)
- x86: PV guest may crash Xen with XPTI [XSA-259] (#1571878)
[ 1 ] Bug #1566253 - xsa258 xen: Information leak via crafted user-supplied CDROM
https://bugzilla.redhat.com/show_bug.cgi?id=1566253
[ 2 ] Bug #1566220 - xsa259 xen: x86 PV guest may crash Xen with XPTI
https://bugzilla.redhat.com/show_bug.cgi?id=1566220
su -c 'dnf upgrade --advisory FEDORA-2018-dbebca30d0' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Topics Covered
Change Log
References
Update Instructions
PREVIOUS
NEXT
Product: Fedora 28
Version: 4.10.0
Release: 9.fc28
Summary: Xen is a virtual machine monitor
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!