1
Candidate: CVE-2013-4361
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4361
5
http://lists.xen.org/archives/html/xen-announce/2013-09/msg00006.html
7
The fbld instruction emulation in Xen 3.3.x through 4.3.x does not use the
8
correct variable for the source effective address, which allows local HVM
9
guests to obtain hypervisor stack information by reading the values used by
13
mdeslaur> this is xsa-66
20
Tags_xen-3.3: universe-binary
21
upstream_xen-3.3: ignored (reached end-of-life)
22
lucid_xen-3.3: not-affected
30
Tags_xen: universe-binary
31
upstream_xen: needs-triage
33
precise_xen: released (4.1.5-0ubuntu0.12.04.2)
34
quantal_xen: released (4.1.5-0ubuntu0.12.10.2)
35
raring_xen: released (4.2.2-0ubuntu0.13.04.2)
36
saucy_xen: released (4.3.0-1ubuntu1.1)
37
devel_xen: released (4.3.0-1ubuntu2)