Explore top 10 tips to secure your open-source projects now. Read More
×
x86: inconsistent cachability flags on guest mappings [XSA-154, CVE-2016-2270] (#1309324) VMX: guest user mode may crash guest with non-canonical RIP [XSA-170, CVE-2016-2271] (#1309323). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-e48f4bd14f 2016-02-26 15:30:48.281396 -------------------------------------------------------------------------------- Name : xen Product : Fedora 23 Version : 4.5.2 Release : 8.fc23 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: x86: inconsistent cachability flags on guest mappings [XSA-154, CVE-2016-2270] (#1309324) VMX: guest user mode may crash guest with non-canonical RIP [XSA-170, CVE-2016-2271] (#1309323) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304627 - CVE-2016-2270 xsa154 xen: inconsistent cachability flags on guest mappings (XSA-154) https://bugzilla.redhat.com/show_bug.cgi?id=1304627 [ 2 ] Bug #1304628 - CVE-2016-2271 xsa170 xen: guest user mode may crash guest with non-canonical RIP (XSA-170) https://bugzilla.redhat.com/show_bug.cgi?id=1304628 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update xen' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announcemailing list
Get the latest Linux and open source security news straight to your inbox.