[Oraclevm-errata] OVMSA-2013-0088 Important: Oracle VM 2.2 xen security update
Errata Announcements for Oracle VM
oraclevm-errata at oss.oracle.com
Fri Dec 6 09:18:32 PST 2013
Oracle VM Security Advisory OVMSA-2013-0088
The following updated rpms for Oracle VM 2.2 have been uploaded to the
Unbreakable Linux Network:
i386:
xen-3.4.0-0.2.15.el5.i386.rpm
xen-64-3.4.0-0.2.15.el5.noarch.rpm
xen-debugger-3.4.0-0.2.15.el5.noarch.rpm
xen-devel-3.4.0-0.2.15.el5.i386.rpm
xen-pvhvm-devel-3.4.0-0.2.15.el5.i386.rpm
xen-tools-3.4.0-0.2.15.el5.i386.rpm
SRPMS:
http://oss.oracle.com/oraclevm/server/2.2/SRPMS-updates/xen-3.4.0-0.2.15.el5.src.rpm
Description of changes:
[3.4.0-0.2.15]
- x86/HVM: only allow ring 0 guest code to make hypercalls XSA-76 (Jan
Beulich) [17822325] {CVE-2013-4554}
[3.4.0-0.2.14]
- x86: restrict XEN_DOMCTL_getmemlist XSA-74 (Jan Beulich) [17821907]
{CVE-2013-4553}
[3.4.0-0.2.13]
- gnttab: correct locking order reversal XSA-73 (Andrew Cooper) [orabug
17768955] {CVE-2013-4494}
More information about the Oraclevm-errata
mailing list