Summary: | <app-emulation/xen-tools-{4.5.2-r6, 4.6.0-r10, 4.6.1-r1}: broken AMD FPU FIP/FDP/FOP leak workaround (XSA172) (CVE-2016-3158,CVE-2016-3159) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Yury German <blueknight> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | dlan, idella4 |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | C4 [noglsa cve] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 588780 | ||
Bug Blocks: |
Description
Yury German
![]() ![]() commit 70be44e9eb6b0c1dd98234059f8d9cefb25b29dc Author: Ian Delaney <idella4@gentoo.org> Date: Sat Apr 23 18:03:54 2016 +0800 app-emulation/xen: revbumps subsequent to addition of xsa sec patches versions; 4.5.2-r6 4.6.0-r10 4.6.1-r1 sec patches; xsa 172 173 Gentoo-bug: #579074 #579072 commit 90911e349565fc34ba172e2622e2ec29650844be Author: Ian Delaney <idella4@gentoo.org> Date: Sat Apr 23 17:57:23 2016 +0800 app-emulation/xen-tools: revbumps subsequent to addition of xsa sec patches versions; 4.5.2-r6 4.6.0-r10 4.6.1-r1 sec patches; xsa 172 173 Gentoo-bug: #579074 #579072 Xen is not vulnerable, xen-tools has x86 version stable, waiting for 30 days to go stable. Version 4.6.3-r1 : 0 was fixed in bug 588780. Setting dependency for GLSA This is only for the app-emulation/xen-tools Version 4.6.3-r1 : 0 was fixed in bug 588780. Setting dependency for GLSA This is only for the app-emulation/xen-tools No GLSA to be filed |