Overview

File _patchinfo of Package patchinfo.5854

<patchinfo incident="5854">
  <issue id="1059777" tracker="bnc">VUL-1: CVE-2017-5526: xen: audio: memory leakage in es1370 device</issue>
  <issue id="1061076" tracker="bnc">VUL-0: CVE-2017-15590: xen: multiple MSI mapping issues on x86 (XSA-237)</issue>
  <issue id="1027519" tracker="bnc">Xen: Missing upstream bug fixes</issue>
  <issue id="1061082" tracker="bnc">VUL-0: CVE-2017-15588: xen: Stale TLB entry due to page type release race (XSA-241)</issue>
  <issue id="1061081" tracker="bnc">VUL-0: CVE-2017-15595: xen: Unlimited recursion in linear pagetable de-typing (XSA-240)</issue>
  <issue id="1061080" tracker="bnc">VUL-0: CVE-2017-15589: xen: hypervisor stack leak in x86 I/O intercept code (XSA-239)</issue>
  <issue id="1061087" tracker="bnc">VUL-0: CVE-2017-15594: xen: x86: Incorrect handling of IST settings during CPU hotplug (XSA-244)</issue>
  <issue id="1061086" tracker="bnc">VUL-0: CVE-2017-15592: xen: x86: Incorrect handling of self-linear shadow mappings with translated guests (XSA-243)</issue>
  <issue id="1061084" tracker="bnc">VUL-0: CVE-2017-15593: xen: page type reference leak on x86 (XSA-242)</issue>
  <issue id="2017-5526" tracker="cve" />
  <issue id="2017-15590" tracker="cve" />
  <issue id="2017-15588" tracker="cve" />
  <issue id="2017-15595" tracker="cve" />
  <issue id="2017-15594" tracker="cve" />
  <issue id="2017-15589" tracker="cve" />
  <issue id="2017-15592" tracker="cve" />
  <issue id="2017-15593" tracker="cve" />
 
  <category>security</category>
  <rating>important</rating>
  <packager>charlesa</packager>
  <description>This update for xen fixes several issues:

These security issues were fixed:

- CVE-2017-5526: The ES1370 audio device emulation support was vulnerable to a
  memory leakage issue allowing a privileged user inside the guest to cause a DoS
  and/or potentially crash the Qemu process on the host (bsc#1059777)
- CVE-2017-15593: Missing cleanup in the page type system allowed a malicious or
  buggy PV guest to cause DoS (XSA-242 bsc#1061084)
- CVE-2017-15592: A problem in the shadow pagetable code allowed a malicious or
  buggy HVM guest to cause DoS or cause hypervisor memory corruption potentially
  allowing the guest to escalate its privilege (XSA-243 bsc#1061086)
- CVE-2017-15594: Problematic handling of the selector fields in the Interrupt
  Descriptor Table (IDT) allowed a malicious or buggy x86 PV guest to escalate
  its privileges or cause DoS (XSA-244 bsc#1061087)
- CVE-2017-15589: Intercepted I/O write operations with less than a full machine
  word's worth of data were not properly handled, which allowed a malicious
  unprivileged x86 HVM guest to obtain sensitive information from the host or
  other guests (XSA-239 bsc#1061080)
- CVE-2017-15595: In certain configurations of linear page tables a stack overflow
  might have occured that allowed a malicious or buggy PV guest to cause DoS and
  potentially privilege escalation and information leaks (XSA-240 bsc#1061081)
- CVE-2017-15588: Under certain conditions x86 PV guests could have caused the
  hypervisor to miss a necessary TLB flush for a page. This allowed a malicious
  x86 PV guest to access all of system memory, allowing for privilege escalation,
  DoS, and information leaks (XSA-241 bsc#1061082)
- CVE-2017-15590: Multiple issues existed with the setup of PCI MSI interrupts
  that allowed a malicious or buggy guest to cause DoS and potentially privilege
  escalation and information leaks (XSA-237 bsc#1061076)
</description>
  <summary>Security update for xen</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places