[El-errata] ELSA-2008-0194 Important: Enterprise Linux 5 xen security and bug fix update
Errata Announcements for Enterprise Linux
el-errata at oss.oracle.com
Tue May 13 15:35:41 PDT 2008
Enterprise Linux Security Advisory ELSA-2008-0194
https://rhn.redhat.com/errata/RHSA-2008-0194.html
The following updated rpms for Enterprise Linux 5 have been uploaded to
the Unbreakable Linux Network:
i386:
xen-libs-3.0.3-41.el5_1.5.i386.rpm
xen-3.0.3-41.el5_1.5.i386.rpm
xen-devel-3.0.3-41.el5_1.5.i386.rpm
x86_64:
xen-libs-3.0.3-41.el5_1.5.i386.rpm
xen-libs-3.0.3-41.el5_1.5.x86_64.rpm
xen-3.0.3-41.el5_1.5.x86_64.rpm
xen-devel-3.0.3-41.el5_1.5.i386.rpm
xen-devel-3.0.3-41.el5_1.5.x86_64.rpm
SRPMS:
http://oss.oracle.com/el5/SRPMS-updates/xen-3.0.3-41.el5_1.5.src.rpm
Description of changes:
[3.0.3-41.el5_1.5]
- Disable QEMU image format auto-detection CVE-2008-2004 (rhbz #444700)
[3.0.3-41.el5_1.4]
- Fix PVFB to validate frame buffer description (rhbz #443376)
- Fix PVFB to cope with bogus update requests (rhbz #368931)
[3.0.3-41.el5_1.3]
- Fix QEMU buffer overflow CVE-2007-5730 (rhbz #360381)
- Fix QEMU block device extents checking CVE-2008-0928 (rhbz #433560)
[3.0.3-41.el5_1.2]
- Fix FV O_DIRECT flushing (rhbz #435495)
[3.0.3-41.el5_1.1]
- Fixed xenbaked tmpfile flaw (CVE-2007-3919) (rhbz #350421)
More information about the El-errata
mailing list