Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 585
Alerts This Week
Warning Icon 1 585

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":100,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":0,"type":"x","order":2,"pct":0,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -8 articles for you...
89

Fedora 23: 2015-11-08 Critical: Xen Security Fixes for VMs

nine security updates CVE-2015-7969 CVE-2015-7970 CVE-2015-7813 CVE-2015-7814 CVE-2015-7812 CVE-2015-7971 CVE-2015-7835 CVE-2015-7972. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-a931b02be2 2015-11-08 21:07:00.318057 -------------------------------------------------------------------------------- Name : xen Product : Fedora 23 Version : 4.5.1 Release : 14.fc23 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: nine security updates CVE-2015-7969 CVE-2015-7970 CVE-2015-7813 CVE-2015-7814 CVE-2015-7812 CVE-2015-7971 CVE-2015-7835 CVE-2015-7972 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1272519 - CVE-2015-7969 xen: leak of main per-domain vcpu pointer array https://bugzilla.redhat.com/show_bug.cgi?id=1272519 [ 2 ] Bug #1272529 - CVE-2015-7970 xen: Long latency populate-on-demand operation is not preemptible on x86 https://bugzilla.redhat.com/show_bug.cgi?id=1272529 [ 3 ] Bug #1271626 - CVE-2015-7813 xen: Various unimplemented hypercalls log without rate limiting on ARM https://bugzilla.redhat.com/show_bug.cgi?id=1271626 [ 4 ] Bug #1271630 - CVE-2015-7814 xen: Race between domain destruction and memory allocation decrease on ARM https://bugzilla.redhat.com/show_bug.cgi?id=1271630 [ 5 ] Bug #1271621 - CVE-2015-7812 xen: Host crash when preempting a multicall on ARM https://bugzilla.redhat.com/show_bug.cgi?id=1271621 [ 6 ] Bug #1272525 - CVE-2015-7971 xen: Some pmu and profiling hypercalls log without rate limiting on x86 https://bugzilla.redhat.com/show_bug.cgi?id=1272525 [ 7 ] Bug #1271971 - CVE-2015-7835 xen:Uncontrolled creation of large page mappings by PV guests on x86 https://bugzilla.redhat.com/show_bug.cgi?id=1271971 [ 8 ] Bug #1276120 - CVE-2015-7972 xen: populate-on-demand balloon size inaccuracy can crash guests on x86 https://bugzilla.redhat.com/show_bug.cgi?id=1276120 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update xen' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . Fedora 23 enhances the xen hypervisor's security model, addressing critical vulnerabilities while improving virtual machine reliability and performance.. Fedora Security,Patching Xen,VM Security Updates. . LinuxSecurity.com Team

Calendar%202 Nov 08, 2015 Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":100,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":0,"type":"x","order":2,"pct":0,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200