[Oraclevm-errata] OVMSA-2009-0008 Moderate: Oracle VM 2.1 acpid security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Mon May 18 10:53:15 PDT 2009

Oracle VM Security Advisory OVMSA-2009-0008

The following updated rpms for Oracle VM 2.1 have been uploaded to the 
Unbreakable Linux Network:



Description of changes:

Following Security fix is released in this errata:

CVE-2009-0798 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0798>

The daemon in acpid before 1.0.10 allows remote attackers to cause a 
denial of service (CPU consumption and connectivity loss) by opening a 
large number of UNIX sockets without closing them, which triggers an 
infinite loop.

- Updated the License entry
- Fixed CVE-2009-0798 (too many open files DoS)
- Resolves: #496291

- Minor fixes in init script
- Resolves: #237752

- Review of init script
- Fixed fd leaking
- Resolves: #237752 #441686

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://oss.oracle.com/pipermail/oraclevm-errata/attachments/20090518/bbb686dc/attachment.html 

More information about the Oraclevm-errata mailing list