what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

Debian Security Advisory 4131-1

Debian Security Advisory 4131-1
Posted Mar 5, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4131-1 - Multiple vulnerabilities have been discovered in the Xen hypervisor.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2018-7540, CVE-2018-7541, CVE-2018-7542
SHA-256 | 44126adb9dc6023698619a69927387aec7de75396a47cc07fc3d6bb10c0ff462

Debian Security Advisory 4131-1

Change Mirror Download
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4131-1 security@debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
March 04, 2018 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : xen
CVE ID : CVE-2018-7540 CVE-2018-7541 CVE-2018-7542

Multiple vulnerabilities have been discovered in the Xen hypervisor:

CVE-2018-7540

Jann Horn discovered that missing checks in page table freeing may
result in denial of service.

CVE-2018-7541

Jan Beulich discovered that incorrect error handling in grant table
checks may result in guest-to-host denial of service and potentially
privilege escalation.

CVE-2018-7542

Ian Jackson discovered that insufficient handling of x86 PVH guests
without local APICs may result in guest-to-host denial of service.

For the stable distribution (stretch), these problems have been fixed in
version 4.8.3+comet2+shim4.10.0+comet3-1+deb9u5.

We recommend that you upgrade your xen packages.

For the detailed security status of xen please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/xen

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=pe4c
-----END PGP SIGNATURE-----
Login or Register to add favorites

File Archive:

August 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    20 Files
  • 2
    Aug 2nd
    4 Files
  • 3
    Aug 3rd
    6 Files
  • 4
    Aug 4th
    55 Files
  • 5
    Aug 5th
    16 Files
  • 6
    Aug 6th
    0 Files
  • 7
    Aug 7th
    0 Files
  • 8
    Aug 8th
    13 Files
  • 9
    Aug 9th
    13 Files
  • 10
    Aug 10th
    34 Files
  • 11
    Aug 11th
    16 Files
  • 12
    Aug 12th
    5 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    25 Files
  • 16
    Aug 16th
    3 Files
  • 17
    Aug 17th
    6 Files
  • 18
    Aug 18th
    4 Files
  • 19
    Aug 19th
    12 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close