[Oraclevm-errata] OVMSA-2012-0048 Important: Oracle VM 2.2 xen security update
Errata Announcements for Oracle VM
oraclevm-errata at oss.oracle.com
Mon Nov 5 13:57:59 PST 2012
Oracle VM Security Advisory OVMSA-2012-0048
The following updated rpms for Oracle VM 2.2 have been uploaded to the
Unbreakable Linux Network:
i386:
xen-3.4.0-0.1.41.el5.i386.rpm
xen-64-3.4.0-0.1.41.el5.noarch.rpm
xen-debugger-3.4.0-0.1.41.el5.noarch.rpm
xen-devel-3.4.0-0.1.41.el5.i386.rpm
xen-pvhvm-devel-3.4.0-0.1.41.el5.i386.rpm
xen-tools-3.4.0-0.1.41.el5.i386.rpm
SRPMS:
http://oss.oracle.com/oraclevm/server/2.2/SRPMS-updates/xen-3.4.0-0.1.41.el5.src.rpm
Description of changes:
[3.4.0-0.1.41]
- XSA-12: prevent a 64 bit guest setting reserved bits in DR7 [orabug
14554090] {CVE-2012-3494}
- XSA-14: Don't BUG_ON() PoD operations on a non-translated guest
[orabug 14554272] {CVE-2012-3496}
- XSA-17: console: bounds check whenever changing the cursor due to an
escape code [orabug 14554401] {CVE-2012-3515}
More information about the Oraclevm-errata
mailing list