Summary: | <app-emulation/xen-{4.5.2-r2,4.6.0-r3}: long running memory operations on ARM - XSA-158 (CVE-2015-8338) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Yury German <blueknight> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | dlan, idella4 |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | ARM | ||
OS: | Linux | ||
Whiteboard: | ~3 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Yury German
2015-11-25 17:58:10 UTC
Patches have been sent to the Xen Maintainers under xen security process. commit ee95ed95448051233465b7e7005cf423de73a6e8 Author: Ian Delaney <idella4@gentoo.org> Date: Wed Dec 9 12:40:52 2015 +0800 app-emulation/xen: clean vulnerable vns. wrt #566842 #566844 commit c7ca943bfd7c509ec97d6a7fca2367320034fba7 Author: Ian Delaney <idella4@gentoo.org> Date: Wed Dec 9 10:48:14 2015 +0800 app-emulation/xen: revbumps -> vns. 4.5.2-r2, 4.6.0-r3 wrt sec. bugs Addition of patches XSA-158 (#566842), XSA-158 (#566844), fixing all corresponding security issues, patches made avaialable for public release as of yesterday (08/12). Patches compressed into my devspace then combined with those of dlan insource. This format will do for now. Not to be adjusted without prior discussion. All patches pass runtests. Line 3 of above commit should read Addition of patches XSA-158 (#566844), XSA-{159,160} (#566842), (this correct entry made in msg in commit in xen-tools) Closing as noglsa. |