1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
|
Candidate: CVE-2013-1918
PublicDate: 2013-05-13
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1918
http://www.openwall.com/lists/oss-security/2013/05/02/8
http://lists.xen.org/archives/html/xen-announce/2013-05/msg00000.html
Description:
Certain page table manipulation operations in Xen 4.1.x, 4.2.x, and earlier
are not preemptible, which allows local PV kernels to cause a denial of
service via vectors related to "deep page table traversal."
Ubuntu-Description:
Notes:
mdeslaur> hypervisor packages are in universe. For
mdeslaur> issues in the hypervisor, add appropriate
mdeslaur> tags to each section, ex:
mdeslaur> Tags_xen: universe-binary
mdeslaur> This is XSA-45
sarnold> Fix was incomplete / incorrect; see also CVE-2013-1432
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
Patches_xen-3.1:
upstream_xen-3.1: ignored (reached end-of-life)
hardy_xen-3.1: ignored (reached end-of-life)
lucid_xen-3.1: DNE
oneiric_xen-3.1: DNE
precise_xen-3.1: DNE
quantal_xen-3.1: DNE
raring_xen-3.1: DNE
devel_xen-3.1: DNE
Patches_xen-3.2:
upstream_xen-3.2: ignored (reached end-of-life)
hardy_xen-3.2: ignored (reached end-of-life)
lucid_xen-3.2: DNE
oneiric_xen-3.2: DNE
precise_xen-3.2: DNE
quantal_xen-3.2: DNE
raring_xen-3.2: DNE
devel_xen-3.2: DNE
Tags_xen-3.3: universe-binary
Patches_xen-3.3:
upstream_xen-3.3: ignored (reached end-of-life)
hardy_xen-3.3: DNE
lucid_xen-3.3: ignored (reached end-of-life)
oneiric_xen-3.3: DNE
precise_xen-3.3: DNE
quantal_xen-3.3: DNE
raring_xen-3.3: DNE
devel_xen-3.3: DNE
Tags_xen: universe-binary
Patches_xen:
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/binB13BXp_kz9.bin (4.1 p1)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/binOlkgR4IUVD.bin (4.1 p2)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/binejhrlCIWge.bin (4.1 p3)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/bin_ryzQJSZg3.bin (4.1 p4)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/binxda1q_wmRZ.bin (4.1 p5)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/binaOsUMVD6KL.bin (4.1 p6)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/binuta1I5i16K.bin (4.1 p7)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/binKwu9nMpsOi.bin (4.2 p1)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/binBr_p_M7Ght.bin (4.2 p2)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/bing4Ng1KSWRb.bin (4.2 p3)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/binPCBvJ0_Whk.bin (4.2 p4)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/binDc0oLHFZDH.bin (4.2 p5)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/binnehIPL76Wk.bin (4.2 p6)
upstream: http://lists.xen.org/archives/html/xen-announce/2013-05/binlX4wRVWVyP.bin (4.2 p7)
upstream_xen: needs-triage
hardy_xen: DNE
lucid_xen: DNE
oneiric_xen: ignored (reached end-of-life)
precise_xen: released (4.1.2-2ubuntu2.9)
quantal_xen: released (4.1.3-3ubuntu1.6)
raring_xen: released (4.2.1-0ubuntu3.2)
devel_xen: released (4.2.1-0ubuntu4)
|