Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 4812-1] xen security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 4812-1] xen security update


Chronologisch Thread 
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 4812-1] xen security update
  • Date: Tue, 15 Dec 2020 12:50:41 +0000
  • List-archive: https://lists.debian.org/msgid-search/20201215125041.GA6824 AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=sayf4RNI7MZrhJYc6wJh/GvWNRSOdFxjkIMsh+dHlow=; b=Om DGh8YI2ITqOwQQOKXjZZkkcEsHf9GxDmVwtIpDrsPuHCR4n6mmdtwtgJSd0x2q/4gYnnoiG6Xfu4q tb2Mp6cvFdPFLytfoJXLfaH/m8vta2y41fqiKKOE6rdMAP0/rFnbUMfKvbEMGbWJOGjOmZtNWoK4y WQSyFAgsxYS3FM6AI1g48EMr/TUBRzKqRf25BrCMu270Fzwb1BIxrWAS4128zyc/PK2lV9EpzGRJ9 xiBrm7NW6RFn5bIpoDNweVoLghvn49ZN4YD0Yl5PNiNjARGs6npEdP/+mljeHWFtR1jUCNVgnWHfK XfK9G+qPnCtCARCLiZ7hF7D8G3wRvsvQ==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Tue, 15 Dec 2020 12:50:59 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <4LOgbN6_uiD.A.fgF.zEL2fB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4812-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
December 15, 2020 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : xen
CVE ID : CVE-2020-29479 CVE-2020-29480 CVE-2020-29481 CVE-2020-29482
CVE-2020-29483 CVE-2020-29484 CVE-2020-29485 CVE-2020-29486
CVE-2020-29566 CVE-2020-29570 CVE-2020-29571

Multiple vulnerabilities have been discovered in the Xen hypervisor:

Several security issues affecting Xenstore could result in cross
domain access (denial of service, information leaks or privilege
escalation) or denial of service against xenstored.

Additional vulnerabilities could result in guest-to-host denial of
service.

For the stable distribution (buster), these problems have been fixed in
version 4.11.4+57-g41a822c392-2.

We recommend that you upgrade your xen packages.

For the detailed security status of xen please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/xen

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=Reu8
-----END PGP SIGNATURE-----



  • [IT-SecNots] [SECURITY] [DSA 4812-1] xen security update, Moritz Muehlenhoff, 15.12.2020

Archiv bereitgestellt durch MHonArc 2.6.19.

Seitenanfang