Bugs fixes in "xen"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2016-9382 | x86 task switch to VM86 mode mis-handled | 2017-03-20 |
| CVE | CVE-2016-9386 | x86 null segments not always treated as unusable | 2017-03-20 |
| CVE | CVE-2016-7777 | Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM registe | 2017-03-20 |
| CVE | CVE-2016-7094 | Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of servi | 2017-03-20 |
| CVE | CVE-2016-7092 | The get_page_from_l3e function in arch/x86/mm.c in Xen allows local 32-bit PV guest OS administrators to gain host OS privileges via vectors related | 2017-03-20 |
| CVE | CVE-2016-6259 | Xen 4.5.x through 4.7.x do not implement Supervisor Mode Access Prevention (SMAP) whitelisting in 32-bit exception and event delivery, which allows l | 2017-03-20 |
| CVE | CVE-2016-6258 | The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveragi | 2017-03-20 |
| CVE | CVE-2016-5242 | The p2m_teardown function in arch/arm/p2m.c in Xen 4.4.x through 4.6.x allows local guest OS users with access to the driver domain to cause a denial | 2017-03-20 |
| CVE | CVE-2016-4963 | The libxl device-handling in Xen through 4.6.x allows local guest OS users with access to the driver domain to cause a denial of service (management | 2017-03-20 |
| CVE | CVE-2016-4480 | The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen 4.6.x and earlier does not properly handle the Page Size (PS) page table entry bit | 2017-03-20 |
| CVE | CVE-2016-4962 | The libxl device-handling in Xen 4.6.x and earlier allows local OS guest administrators to cause a denial of service (resource consumption or managem | 2017-03-20 |
| CVE | CVE-2016-3960 | Integer overflow in the x86 shadow pagetable code in Xen allows local guest OS users to cause a denial of service (host crash) or possibly gain privi | 2017-03-20 |
| CVE | CVE-2016-3159 | The fpu_fxrstor function in arch/x86/i387.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, w | 2017-03-20 |
| CVE | CVE-2016-3158 | The xrstor function in arch/x86/xstate.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, whic | 2017-03-20 |
| CVE | CVE-2016-2271 | VMX in Xen 4.6.x and earlier, when using an Intel or Cyrix CPU, allows local HVM guest users to cause a denial of service (guest crash) via vectors r | 2017-03-20 |
| CVE | CVE-2015-8615 | The hvm_set_callback_via function in arch/x86/hvm/irq.c in Xen 4.6 does not limit the number of printk console messages when logging the new callback | 2017-03-20 |
| CVE | CVE-2016-1571 | The paging_invlpg function in include/asm-x86/paging.h in Xen 3.3.x through 4.6.x, when using shadow mode paging or nested virtualization is enabled, | 2017-03-20 |
| CVE | CVE-2016-1570 | The PV superpage functionality in arch/x86/mm.c in Xen 3.4.0, 3.4.1, and 4.1.x through 4.6.x allows local PV guests to obtain sensitive information, | 2017-03-20 |
| CVE | CVE-2015-8555 | information leak in legacy x86 FPU/XMM initialization | 2017-03-20 |
| CVE | CVE-2015-8341 | libxl leak of pv kernel and initrd on error | 2017-03-20 |
About
-
Send Feedback to @ubuntu_updates
