[FEDORA-2013-23251] Fedora 20: xen

Severity High

Affected Packages 1

CVEs 5

Disaggregated domain management security status update,
IOMMU TLB flushing may be inadvertently suppressed
Lock order reversal between page_alloc_lock and mm_rwlock,
Hypercalls exposed to privilege rings 1 and 2 of HVM guests
Insufficient TLB flushing in VT-d (iommu) code

Package	Affected Version
pkg:rpm/fedora/xen?distro=fedora-20	< 4.3.1.6.fc20

ID

FEDORA-2013-23251

Severity

high

Severity from

CVE-2013-6375

URL

https://bodhi.fedoraproject.org/updates/FEDORA-2013-23251

Published

2013-12-21T02:27:56
(10 years ago)

Modified

2013-12-21T02:27:56
(10 years ago)

Rights

Other Advisories

Source	# ID	Name	URL
Bugzilla	1035811	Bug #1035811 - CVE-2013-6400 xen: IOMMU TLB flushing may be inadvertently suppressed	https://bugzilla.redhat.com/show_bug.cgi?id=1035811
Bugzilla	1029120	Bug #1029120 - CVE-2013-4553 kernel: xen: lock order reversal between page_alloc_lock and mm_rwlock	https://bugzilla.redhat.com/show_bug.cgi?id=1029120
Bugzilla	1033138	Bug #1033138 - CVE-2013-6375 xen: Insufficient TLB flushing in VT-d (iommu) code	https://bugzilla.redhat.com/show_bug.cgi?id=1033138
Bugzilla	1029111	Bug #1029111 - CVE-2013-4554 kernel: xen: hypercalls exposed to privilege rings 1 and 2 of HVM guests	https://bugzilla.redhat.com/show_bug.cgi?id=1029111

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform	Arch	Patch / Fix
Affected	pkg:rpm/fedora/xen?distro=fedora-20	fedora	xen	< 4.3.1.6.fc20	fedora-20

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date