Описание
ELSA-2011-0496: xen security update (IMPORTANT)
[3.0.3-120.el5_6.2]
- Fix logic and integer overflow in xc_try_bzip2_decode() (rhbz 696938)
- Fix logic and integer overflow in xc_try_lzma_decode() (rhbz 696938)
- Fix integer and buffer overflows in xc_dom_probe_bzimage_kernel() (rhbz 696938)
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
xen
3.0.3-120.el5_6.2
xen-devel
3.0.3-120.el5_6.2
xen-libs
3.0.3-120.el5_6.2
Oracle Linux i386
xen
3.0.3-120.el5_6.2
xen-devel
3.0.3-120.el5_6.2
xen-libs
3.0.3-120.el5_6.2
Связанные CVE
Связанные уязвимости
tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allows local users to cause a denial of service (management software infinite loop and management domain resource consumption) via unspecified vectors related to "Lack of error checking in the decompression loop."
tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allows local users to cause a denial of service (management software infinite loop and management domain resource consumption) via unspecified vectors related to "Lack of error checking in the decompression loop."
tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allows local users to cause a denial of service (management software infinite loop and management domain resource consumption) via unspecified vectors related to "Lack of error checking in the decompression loop."
tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allow ...
Multiple integer overflows in tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allow local users to cause a denial of service and possibly execute arbitrary code via a crafted paravirtualised guest kernel image that triggers (1) a buffer overflow during a decompression loop or (2) an out-of-bounds read in the loader involving unspecified length fields.