[kernel-xen] Currently syncing xen-4.2.0-5 & kernel-xen-3.6.9-1

Steven Haigh netwiz at crc.id.au
Tue Dec 4 21:26:55 EST 2012


kernel-xen changes:
* Mon Dec 04 2012 Steven Haigh <netwiz at crc.id.au>
- Update to kernel 3.6.9-1
- add Provides: kernel to allow removal of non-Xen kernels and satisfy deps

Xen changes are all security related:
* Tue Dec 04 2012 Steven Haigh <netwiz at crc.id.au> - 4.2.0-5
- XSA 26 (CVE-2012-5510) - Grant table version switch list corruption 
vulnerability
- XSA 28 (CVE-2012-5512) - HVMOP_get_mem_access crash / 
HVMOP_set_mem_access information leak
- XSA 29 (CVE-2012-5513) - XENMEM_exchange may overwrite hypervisor memory
- XSA 30 (CVE-2012-5514) - Broken error handling in 
guest_physmap_mark_populate_on_demand()
- XSA 31 (CVE-2012-5515) - Several memory hypercall operations allow 
invalid extent order values
- XSA 32 (CVE-2012-5525) - several hypercalls do not validate input GFNs

-- 
Steven Haigh

Email: netwiz at crc.id.au
Web: http://www.crc.id.au
Phone: (03) 9001 6090 - 0412 935 897
Fax: (03) 8338 0299

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4965 bytes
Desc: S/MIME Cryptographic Signature
URL: <https://lists.wireless.org.au/pipermail/kernel-xen/attachments/20121204/bfcf1227/attachment.p7s>


More information about the kernel-xen mailing list