Summary: | app-emulation/xen: arm: vgic: incorrect rate limiting of guest triggered logging (CVE-2015-1563) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | trivial | CC: | xen |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.openwall.com/lists/oss-security/2015/01/29/9 | ||
Whiteboard: | ~3 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Agostino Sarubbo
2015-01-31 08:28:44 UTC
CVE-2015-1563 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1563): The ARM GIC distributor virtualization in Xen 4.4.x and 4.5.x allows local guests to cause a denial of service by causing a large number messages to be logged. fixed in app-emulation/xen-4.4.1-r6, app-emulation/xen-4.5.0-r1 (no stablereq needed) Maintainer(s), Thank you for bump and cleanup! No stable version. Closing noglsa. |