diff options
| author | prlw1 <prlw1@pkgsrc.org> | 2013-09-12 23:37:18 +0000 |
|---|---|---|
| committer | prlw1 <prlw1@pkgsrc.org> | 2013-09-12 23:37:18 +0000 |
| commit | ef9dbf5996db2365d0f5352f7025b6a13a304803 (patch) | |
| tree | 58e0711b1808b82a39745e6e2a0e6935bcebda2e /doc | |
| parent | 29afa1f03961f938da11a6599ee5fa077c71de0b (diff) | |
| download | pkgsrc-ef9dbf5996db2365d0f5352f7025b6a13a304803.tar.gz | |
Update xen to 4.2.3
- Add warning if /kern/xen/privcmd is not readable
Fixes the following critical vulnerabilities:
* CVE-2013-1918 / XSA-45:
Several long latency operations are not preemptible
* CVE-2013-1952 / XSA-49:
VT-d interrupt remapping source validation flaw for bridges
* CVE-2013-2076 / XSA-52:
Information leak on XSAVE/XRSTOR capable AMD CPUs
* CVE-2013-2077 / XSA-53:
Hypervisor crash due to missing exception recovery on XRSTOR
* CVE-2013-2078 / XSA-54:
Hypervisor crash due to missing exception recovery on XSETBV
* CVE-2013-2194, CVE-2013-2195, CVE-2013-2196 / XSA-55:
Multiple vulnerabilities in libelf PV kernel handling
* CVE-2013-2072 / XSA-56:
Buffer overflow in xencontrol Python bindings affecting xend
* CVE-2013-2211 / XSA-57:
libxl allows guest write access to sensitive console related xenstore keys
* CVE-2013-1432 / XSA-58:
Page reference counting error due to XSA-45/CVE-2013-1918 fixes
* XSA-61:
libxl partially sets up HVM passthrough even with disabled iommu
The following minor vulnerability is also being addressed:
* CVE-2013-2007 / XSA-51
qemu guest agent (qga) insecure file permissions
Among many bug fixes and improvements:
* addressing a regression from the fix for XSA-46
* bug fixes to low level system state handling, including certain
hardware errata workarounds
Diffstat (limited to 'doc')
0 files changed, 0 insertions, 0 deletions