Debian alert DLA-1549-1 (xen)

From:
             
 
Felix Geyer <felix.geyer@credativ.de> 
To:
             
 
debian-lts-announce@lists.debian.org 
Subject:
             
 
[SECURITY] [DLA 1549-1] xen security update 
Date:
             
 
Thu, 18 Oct 2018 13:07:38 +0200
Message-ID:
             
 
<E1gD69S-0001Rm-PP@naiad>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : xen
Version        : 4.4.4lts2-0+deb8u1
CVE ID         : CVE-2017-14316 CVE-2017-14317 CVE-2017-14319 CVE-2017-15588 
                 CVE-2017-15589 CVE-2017-15590 CVE-2017-15597 CVE-2017-17046 
                 CVE-2017-17563 CVE-2017-17564 CVE-2017-17565 CVE-2017-17566 
                 CVE-2018-10471 CVE-2018-10982

Multiple vulnerabilities have been discovered in the Xen hypervisor, which
could result in denial of service, informations leaks or privilege
escalation.

For Debian 8 "Jessie", these problems have been fixed in version
4.4.4lts2-0+deb8u1.

We recommend that you upgrade your xen packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEFkxwUS95KUdnZKtW/iLG/YMTXUUFAlvIPR8ACgkQ/iLG/YMT
XUWWbg/9ECPDEdcfFPnu/ASrDR5Ims6OIDPkOsTkKs9DEhWfWjcpVKS/phOAfNJr
RlJJSNKpRCzPXf+GFlkUpnCDPlqUytnQvFsdx0Swk3JHnsofEATdyKbTrM2pM0C3
gTpJqCrwH4DWYzZNhrOwWbkzxGihLZ7bo4+cGCE9q85c3vMZWzTd7CHWlei0BeKp
djg/pYxPTYHpPJ8aXkzAuLh9skRrfpAq2MeRWPXXtEddOTdV1iFgx3JbIkhAvbnF
OLV3CL4F9L4bSXhZqKhGicIdzZkJvP/+o0NSMpBrf9/ib9QPznw9oaDHxEPa6r44
tLspiW4Dv5BYRtQmdF7hjm1Y9Yaiu2xdEmBCM43IDRsQMudmUzSx1fBbKs9kAoIy
Kf8p6okbzwR06sviasc3qpyOxWqpEgUI92VNF7tyLudNiZMlpsbi3vLCX92gFf+L
eFxRds6HLP27XffeAV3UUFBRFZGEzjq4rXP887F7SwuF0ulEs9t3isr9VhfAOgll
Fd+HWaHoPTpxsTlZuhyBtzKFAaa75vTd3ufg19zZeks0iZR8jbjLb5E+f8WWz10V
V8jeBL6VpsTjGL21sW94YjCWU/apJLCx7baGd7lXHg1L7QJHwVdRvalkay9hfRYX
C/Jvb82J3L2i2N8kpyr1vbTMqysyfGF1JmNogfq9oxAIr1K0L7c=
=i4vf
-----END PGP SIGNATURE-----