Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2015-1002

Опубликовано: 13 мая 2015
Источник: oracle-oval
Платформа: Oracle Linux 5

Описание

ELSA-2015-1002: xen security update (IMPORTANT)

[3.0.3-146.el5]

  • xen-fdc-force-the-fifo-access-to-be-in-bounds-of-the-all.patch
  • xen-FDC-Fix-buffer-overflow-Herv-Poussineau.patch
  • Resolves: bz#1219333 (xen: qemu: floppy disk controller flaw [rhel-5.11.z])

[3.0.3-144.el5]

  • xm: Fix vcpu-pin complain for CPU number out of range (rhbz 955656)
  • libxc: Support set affinity for more than 64 CPUS (rhbz 955656)
  • libxc: Fixes for 'support affinity for more than 64 CPUS' (rhbz 955656)
  • xend: Fix bug of a cpu affinity vcpu-pin under ia32pa (rhbz 955656)
  • libxc: Fix cpu number overflow for vcpu-pin (rhbz 955656)

[3.0.3-143.el5]

  • libxc: move error checking next to the function which returned the error (rhbz 870413)
  • libxc: builder: limit maximum size of kernel/ramdisk (rhbz 870413)
  • e1000: discard packets that are too long if !SBP and !LPE (rhbz 910844)
  • e1000: discard oversized packets based on SBP|LPE (rhbz 910844)

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

xen

3.0.3-146.el5_11

xen-devel

3.0.3-146.el5_11

xen-libs

3.0.3-146.el5_11

Oracle Linux x86_64

xen

3.0.3-146.el5_11

xen-devel

3.0.3-146.el5_11

xen-libs

3.0.3-146.el5_11

Oracle Linux i386

xen

3.0.3-146.el5_11

xen-devel

3.0.3-146.el5_11

xen-libs

3.0.3-146.el5_11

Связанные CVE

CVE-2015-3456

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2015-3456

ubuntu
больше 10 лет назад

The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.

redhat логотип

CVE-2015-3456

redhat
больше 10 лет назад

The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.

nvd логотип

CVE-2015-3456

nvd
больше 10 лет назад

The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.

debian логотип

CVE-2015-3456

debian
больше 10 лет назад

The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and ear ...

suse-cvrf логотип

SUSE-SU-2015:0927-1

suse-cvrf
больше 10 лет назад

Security update for Xen