Overview

File _patchinfo of Package patchinfo.32

<patchinfo incident="xen">
  <packager>lijews</packager>
  <issue tracker="cve" id="CVE-2012-5515"></issue>
  <issue tracker="bnc" id="789950">VUL-0: CVE-2012-5515: xen: Several memory hypercall operations allow invalid extent order values (XSA-31)</issue>
  <issue tracker="cve" id="CVE-2012-5514"></issue>
  <issue tracker="bnc" id="789948">VUL-0: CVE-2012-5514: xen: Missing unlock in guest_physmap_mark_populate_on_demand() (XSA-30)</issue>
  <issue tracker="cve" id="CVE-2012-5513"></issue>
  <issue tracker="bnc" id="789951">VUL-0: CVE-2012-5513: xen: XENMEM_exchange may overwrite hypervisor memory (XSA-29)</issue>
  <issue tracker="cve" id="CVE-2012-5512"></issue>
  <issue tracker="bnc" id="789940">VUL-0: CVE-2012-5512: xen: HVMOP_get_mem_access crash / HVMOP_set_mem_access information leak (XSA-28)</issue>
  <issue tracker="cve" id="CVE-2012-5511"></issue>
  <issue tracker="bnc" id="789944">VUL-0: CVE-2012-5511: xen: Several HVM operations do not validate the range of their inputs (XSA-27)</issue>
  <issue tracker="cve" id="CVE-2012-5510"></issue>
  <issue tracker="bnc" id="789945">VUL-0: CVE-2012-5510: xen: Grant table version switch list corruption vulnerability (XSA-26)</issue>
  <category>security</category>
  <rating>important</rating>
  <summary>xen: security update to fix various denial of service issues</summary>
  <description>XEN was updated to fix various denial of service issues.


- bnc#789945 - CVE-2012-5510: xen: Grant table version
  switch list corruption vulnerability (XSA-26)

- bnc#789944 - CVE-2012-5511: xen: Several HVM operations do
  not validate the range of their inputs (XSA-27)

- bnc#789940 - CVE-2012-5512: xen: HVMOP_get_mem_access
  crash / HVMOP_set_mem_access information leak (XSA-28)

- bnc#789951 - CVE-2012-5513: xen: XENMEM_exchange may
  overwrite hypervisor memory (XSA-29)

- bnc#789948 - CVE-2012-5514: xen: Missing unlock in
  guest_physmap_mark_populate_on_demand() (XSA-30)

- bnc#789950 - CVE-2012-5515: xen: Several memory hypercall
  operations allow invalid extent order values (XSA-31)</description>
  <reboot_needed/>
</patchinfo>
openSUSE Build Service is sponsored by
Places