From 612268188b38a06c9c01424163e79f81cb4d35d2 Mon Sep 17 00:00:00 2001 From: Yury German Date: Sat, 11 Apr 2015 16:09:54 -0400 Subject: Add GLSA 201504-04 --- glsa-201504-04.xml | 89 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 89 insertions(+) create mode 100644 glsa-201504-04.xml (limited to 'glsa-201504-04.xml') diff --git a/glsa-201504-04.xml b/glsa-201504-04.xml new file mode 100644 index 00000000..6439afb7 --- /dev/null +++ b/glsa-201504-04.xml @@ -0,0 +1,89 @@ + + + + Xen: Multiple vulnerabilities + Multiple vulnerabilities have been found in Xen, the worst of which + can allow remote attackers to cause a Denial of Service condition. + + xen + April 11, 2015 + April 11, 2015: 1 + 478280 + 482138 + 512294 + 519800 + 530182 + 530980 + 532030 + 536220 + 542266 + 543304 + 545144 + local + + + 4.4.2-r1 + 4.2.5-r8 + 4.4.2-r1 + + + +

Xen is a bare-metal hypervisor.

+ + +

Multiple vulnerabilities have been discovered in Xen. Please review the + CVE identifiers referenced below for details. +

+ + +

A local attacker could possibly cause a Denial of Service condition or + obtain sensitive information. +

+ + +

There is no known workaround at this time.

+ + +

All Xen 4.4 users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=app-emulation/xen-4.4.2-r1" + + +

All Xen 4.2 users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=app-emulation/xen-4.2.5-r8" + + + + CVE-2013-2212 + CVE-2013-3495 + CVE-2014-3967 + CVE-2014-3968 + CVE-2014-5146 + CVE-2014-5149 + CVE-2014-8594 + CVE-2014-8595 + CVE-2014-8866 + CVE-2014-8867 + CVE-2014-9030 + CVE-2014-9065 + CVE-2014-9066 + CVE-2015-0361 + CVE-2015-2044 + CVE-2015-2045 + CVE-2015-2152 + CVE-2015-2751 + CVE-2015-2752 + CVE-2015-2756 + + + BlueKnight + + + BlueKnight + + -- cgit v1.2.3-65-gdbad