DSA-4201-1 xen -- xenID: oval:org.secpod.oval:def:603398 | Date: (C)2018-05-17 (M)2024-04-17 |
Class: PATCH | Family: unix |
Multiple vulnerabilities have been discovered in the Xen hypervisor: CVE-2018-8897 Andy Lutomirski and Nick Peterson discovered that incorrect handling of debug exceptions could result in privilege escalation. CVE-2018-10471 An error was discovered in the mitigations against Meltdown which could result in denial of service. CVE-2018-10472 Anthony Perard discovered that incorrect parsing of CDROM images can result in information disclosure. CVE-2018-10981 Jan Beulich discovered that malformed device models could result in denial of service. CVE-2018-10982 Roger Pau Monne discovered that incorrect handling of high precision event timers could result in denial of service and potentially privilege escalation.
Product: |
xen-hypervisor-4.8-amd64 |
libxen-dev |
xen-hypervisor-4.8-arm64 |
xen-hypervisor-4.8-armhf |
xen-system-armhf |
xen-utils-4.8 |
xen-system-arm64 |
libxen-4.8 |
libxenstore3.0 |
xen-utils-common |
xen-system-amd64 |
xenstore-utils |