Overview Details Repositories Revisions Requests Users Attributes Meta
xen: security and bugfix update to 4.1.5

XEN was updated to 4.1.5 release. It fixes various bugs and security issues.

Issues fixed seperately from the 4.1.5 release:

- bnc#824676 - Failed to setup devices for vm instance when start multiple vms simultaneously

- bnc#XXXXXX - xen: CVE-2013-XXXX: XSA-61: suppress device
assignment to HVM guest when there is no IOMMU

- Various upstream patches from Jan were integrated.

- bnc#823786 - migrate.py support of short options dropped by PTF
- bnc#803712 - after live migration rcu_sched_state detected stalls
add new option xm migrate --min_remaing

- CVE-2013-1432 / bnc#826882 - xen: XSA-58: x86: fix page refcount handling
in page table pin error path
- CVE-2013-2211 / bnc#823608 - xen: XSA-57: libxl allows guest write access to
sensitive console related xenstore keys
- bnc#823011 - xen: XSA-55: Multiple vulnerabilities in
libelf PV kernel handling

- bnc#801663 - performance of mirror lvm unsuitable for production

- CVE-2013-1918/ bnc#816159 - xen: CVE-2013-1918: XSA-45: Several long
latency operations are not preemptible
- CVE-2013-1952 / bnc#816163 - xen: CVE-2013-1952: XSA-49: VT-d interrupt
remapping source validation flaw for bridges

- CVE-2013-2076 / bnc#820917 - CVE-2013-2076: xen: Information leak on
XSAVE/XRSTOR capable AMD CPUs (XSA-52)
- CVE-2013-2077 / bnc#820919 - CVE-2013-2077: xen: Hypervisor crash due to
missing exception recovery on XRSTOR (XSA-53)
- CVE-2013-2078 / bnc#820920 - CVE-2013-2078: xen: Hypervisor crash due to
missing exception recovery on XSETBV (XSA-54)

- CVE-2013-2072 / bnc#819416 - xen: CVE-2013-2072: XSA-56: Buffer overflow
in xencontrol Python bindings affecting xend

- Update to Xen 4.1.5 c/s 23509
There were many xen.spec file patches dropped as now being included
in the 4.1.5 tarball.

- CVE-2013-1918 / bnc#816159 - xen: XSA-45: Several long latency
operations are not preemptible
- CVE-2013-1952 / bnc#816163 - xen: XSA-49: VT-d interrupt
remapping source validation flaw for bridges

- bnc#809662 - can't use pv-grub to start domU (pygrub does work)

- CVE-2013-1917 / bnc#813673 - xen: Xen PV DoS vulnerability with SYSENTER
- CVE-2013-1919 / bnc#813675 - xen: Several access permission
issues with IRQs for unprivileged guests
- CVE-2013-1920 / bnc#813677 - xen: Potential use of freed
memory in event channel operations

- bnc#814709 - Unable to create XEN virtual machines in SLED 11 SP2
on Kyoto

Fixed bugs
bnc#820920
VUL-1: CVE-2013-2078: xen: Hypervisor crash due to missing exception recovery on XSETBV (XSA-54)
bnc#820919
VUL-1: CVE-2013-2077: xen: Hypervisor crash due to missing exception recovery on XRSTOR (XSA-53)
bnc#816156
VUL-0: xen: CVE-2013-1964: XSA-50: grant table hypercall acquire/release imbalance
bnc#809662
can't use pv-grub to start domU (pygrub does work)
bnc#823608
VUL-0: CVE-2013-2211: xen: XSA-57: libxl allows guest write access to sensitive console related xenstore keys
bnc#816159
xen: CVE-2013-1918: XSA-45: Several long latency operations are not preemptible
bnc#826882
VUL-0: xen: CVE-2013-1432: XSA-58: Page reference counting error due to XSA-45/CVE-2013-1918 fixes
bnc#824676
Failed to setup devices for vm instance when start multiple vms simultaneously
bnc#820917
VUL-1: CVE-2013-2076: xen: Information leak on XSAVE/XRSTOR capable AMD CPUs (XSA-52)
bnc#813673
xen: CVE-2013-1917: XSA-44: Xen PV DoS vulnerability with SYSENTER
bnc#813675
xen: CVE-2013-1919: XSA-46: Several access permission issues with IRQs for unprivileged guests
bnc#814709
Unable to create XEN virtual machines in SLED 11 SP2 on Kyoto
bnc#801663
performance of mirror lvm unsuitable for production
bnc#813677
VUL-0: xen: CVE-2013-1920: XSA-47: Potential use of freed memory in event channel operations
bnc#823786
migrate.py support of short options dropped by PTF
bnc#816163
xen: CVE-2013-1952: XSA-49: VT-d interrupt remapping source validation flaw for bridges
bnc#823011
VUL-0: CVE-2013-2194: xen: XSA-55: Multiple vulnerabilities in libelf PV kernel handling
bnc#803712
after live migration rcu_sched_state detected stalls
bnc#819416
VUL-0: xen: CVE-2013-2072: XSA-56: Buffer overflow in xencontrol Python bindings affecting xend
CVE-CVE-2013-2072
CVE-CVE-2013-2076
CVE-CVE-2013-2077
CVE-CVE-2013-1917
CVE-CVE-2013-1918
CVE-CVE-2013-1920
CVE-CVE-2013-2078
CVE-CVE-2013-1952
CVE-CVE-2013-1964
CVE-CVE-2013-1919
CVE-CVE-2013-2211
CVE-CVE-2013-1432
Selected Binaries
openSUSE Build Service is sponsored by
Places