LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Kernel prepatch 3.9-rc6

LWN.net Weekly Edition for April 4, 2013

LWN.net Weekly Edition for March 28, 2013

A kernel change breaks GlusterFS

PyCon: Evangelizing Python

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

xen: multiple vulnerabilities

Package(s):Xen CVE #(s):CVE-2012-3497 CVE-2012-4535 CVE-2012-4536 CVE-2012-4537 CVE-2012-4538 CVE-2012-4539
Created:November 16, 2012 Updated:December 24, 2012
Description:

From the SUSE advisory:

* CVE-2012-4535: xen: Timer overflow DoS vulnerability (XSA 20)

* CVE-2012-4536: xen: pirq range check DoS vulnerability (XSA 21)

* CVE-2012-4537: xen: Memory mapping failure DoS vulnerability (XSA 22)

* CVE-2012-4538: xen: Unhooking empty PAE entries DoS vulnerability (XSA 23)

* CVE-2012-4539: xen: Grant table hypercall infinite loop DoS vulnerability (XSA 24)

* CVE-2012-3497: xen: multiple TMEM hypercall vulnerabilities (XSA-15)

Alerts:
SUSE SUSE-SU-2012:1486-1 2012-11-16
SUSE SUSE-SU-2012:1487-1 2012-11-16
SUSE SUSE-SU-2012:1503-1 2012-11-19
Fedora FEDORA-2012-18249 2012-11-23
Fedora FEDORA-2012-18242 2012-11-23
openSUSE openSUSE-SU-2012:1572-1 2012-11-26
openSUSE openSUSE-SU-2012:1573-1 2012-11-26
Red Hat RHSA-2012:1540-01 2012-12-04
CentOS CESA-2012:1540 2012-12-05
SUSE SUSE-SU-2012:1615-1 2012-12-06
Scientific Linux SL-kern-20121206 2012-12-06
Oracle ELSA-2012-1540 2012-12-05
Debian DSA-2582-1 2012-12-07
openSUSE openSUSE-SU-2012:1685-1 2012-12-23
openSUSE openSUSE-SU-2012:1687-1 2012-12-23
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds