Overview

File _patchinfo of Package patchinfo.950

<patchinfo incident="950">
  <issue id="939712" tracker="bnc">XSA-140: QEMU leak of uninitialized heap memory in rtl8139 device model</issue>
  <issue id="939709" tracker="bnc">XSA-139: xen: Use after free in QEMU/Xen block unplug protocol</issue>
  <issue id="CVE-2015-5165" tracker="cve" />
  <issue id="CVE-2015-5166" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>charlesa</packager>
  <description>

This security update of Xen fixes the following issues:

* bsc#939712 (XSA-140): QEMU leak of uninitialized heap
  memory in rtl8139 device model (CVE-2015-5165)
* bsc#939709 (XSA-139):  Use after free in QEMU/Xen
  block unplug protocol (CVE-2015-5166)
</description>
  <summary>security update for xen</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places