FEDORA-2016-1c3374bcb9 — security update for xen

stable

xen-4.5.3-10.fc23

FEDORA-2016-1c3374bcb9 created by myoung 7 years ago for Fedora 23

x86: Disallow L3 recursive pagetable for 32-bit PV guests [XSA-185, CVE-2016-7092] (#1374470) x86: Mishandling of instruction pointer truncation during emulation [XSA-186, CVE-2016-7093] (#1374471) x86 HVM: Overflow of sh_ctxt->seg_reg[] [XSA-187, CVE-2016-7094] (#1374473)

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2016-1c3374bcb9

This update has been submitted for testing by myoung.

7 years ago

This update has been pushed to testing.

7 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

7 years ago

em3rson commented & provided feedback 7 years ago

karma

works for me

This update has been submitted for stable by myoung.

7 years ago

This update has been pushed to stable.

7 years ago

Please login to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

None

Builds

xen-4.5.3-10.fc23

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

7 years ago

in testing

7 years ago

in stable

7 years ago

BZ#1370319 CVE-2016-7092 xen: x86: Disallow L3 recursive pagetable for 32-bit PV guests

BZ#1370322 CVE-2016-7093 xen: x86: Mishandling of instruction pointer truncation during emulation

BZ#1370332 CVE-2016-7094 xen: x86 HVM: Overflow of sh_ctxt->seg_reg[]

BZ#1374470 CVE-2016-7092 xen: x86: Disallow L3 recursive pagetable for 32-bit PV guests [fedora-all]

BZ#1374471 CVE-2016-7093 xen: x86: Mishandling of instruction pointer truncation during emulation [fedora-all]

BZ#1374473 CVE-2016-7094 xen: x86 HVM: Overflow of sh_ctxt->seg_reg[] [fedora-all]

xen-4.5.3-10.fc23

Automated Test Results

None