Overview

File _patchinfo of Package patchinfo.787

<patchinfo incident="787">
  <category>security</category>
  <issue id="925466" tracker="bnc"></issue>
  <issue id="935256" tracker="bnc"></issue>
  <issue id="935634" tracker="bnc"></issue>
  <issue id="938344" tracker="bnc"></issue>
  <issue id="CVE-2015-5154" tracker="cve" />
  <issue id="CVE-2015-3259" tracker="cve" />
  <rating>important</rating>
  <packager>charlesa</packager>
  <description>xen was updated to fix two security issues.

These security issues were fixed:
- CVE-2015-3259: xl command line config handling stack overflow (bsc#935634, XSA-137).
- CVE-2015-5154: Host code execution via IDE subsystem CD-ROM (bsc#938344).
  
These non-security issues were fixed:
- Restart of xencommons service did lead to loss of xenstore data (bsc#935256).
- Kdump did not work in a XEN environment (bsc#925466).
</description>
  <summary>Security update for xen</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places