DSA-4131-1 xen -- xenID: oval:org.secpod.oval:def:603301 | Date: (C)2018-03-08 (M)2024-01-29 |
Class: PATCH | Family: unix |
Multiple vulnerabilities have been discovered in the Xen hypervisor: CVE-2018-7540 Jann Horn discovered that missing checks in page table freeing may result in denial of service. CVE-2018-7541 Jan Beulich discovered that incorrect error handling in grant table checks may result in guest-to-host denial of service and potentially privilege escalation. CVE-2018-7542 Ian Jackson discovered that insufficient handling of x86 PVH guests without local APICs may result in guest-to-host denial of service.
Product: |
xen-hypervisor-4.8-amd64 |
libxen-dev |
xen-hypervisor-4.8-arm64 |
xen-hypervisor-4.8-armhf |
xen-system-armhf |
xen-utils-4.8 |
xen-system-arm64 |
libxen-4.8 |
libxenstore3.0 |
xen-utils-common |
xen-system-amd64 |
xenstore-utils |