FEDORA-2016-7d2c67d1f5 — security update for xen

stable

xen-4.6.3-5.fc24

FEDORA-2016-7d2c67d1f5 created by myoung 8 years ago for Fedora 24

x86: Disallow L3 recursive pagetable for 32-bit PV guests [XSA-185, CVE-2016-7092] (#1374470) x86: Mishandling of instruction pointer truncation during emulation [XSA-186, CVE-2016-7093] (#1374471) x86 HVM: Overflow of sh_ctxt->seg_reg[] [XSA-187, CVE-2016-7094] (#1374473)

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2016-7d2c67d1f5

This update has been submitted for testing by myoung.

8 years ago

This update has been pushed to testing.

8 years ago

filiperosset commented & provided feedback 8 years ago

karma

no regressions noted

cserpentis commented & provided feedback 8 years ago

karma

works for me

This update has been submitted for stable by bodhi.

8 years ago

em3rson commented & provided feedback 8 years ago

karma

works for me

This update has been pushed to stable.

8 years ago

Please login to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

None

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

8 years ago

in testing

8 years ago

in stable

8 years ago

Builds

xen-4.6.3-5.fc24

BZ#1370319 CVE-2016-7092 xen: x86: Disallow L3 recursive pagetable for 32-bit PV guests

BZ#1370322 CVE-2016-7093 xen: x86: Mishandling of instruction pointer truncation during emulation

BZ#1370332 CVE-2016-7094 xen: x86 HVM: Overflow of sh_ctxt->seg_reg[]

BZ#1374470 CVE-2016-7092 xen: x86: Disallow L3 recursive pagetable for 32-bit PV guests [fedora-all]

BZ#1374471 CVE-2016-7093 xen: x86: Mishandling of instruction pointer truncation during emulation [fedora-all]

BZ#1374473 CVE-2016-7094 xen: x86 HVM: Overflow of sh_ctxt->seg_reg[] [fedora-all]

xen-4.6.3-5.fc24

Automated Test Results

None