1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2024-a676697123

[FEDORA-2024-a676697123] Fedora 38: xen

Affected Packages 1
CVEs 3
Info Packages Vulnerabilities

x86: Native Branch History Injection [XSA-456, CVE-2024-2201]
update to xen 4.17.4, remove patches now included upstream
rebase xen.gcc12.fixes.patch
x86 HVM hypercalls may trigger Xen bug check [XSA-454, CVE-2023-46842]
x86: Incorrect logic for BTC/SRSO mitigations [XSA-455, CVE-2024-31142]

Package Affected Version
pkg:rpm/fedora/xen?distro=fedora-38 < 4.17.4.1.fc38
ID
FEDORA-2024-a676697123
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2024-a676697123
Published
2024-04-26T01:04:11
(4 months ago)
Modified
2024-04-26T01:04:11
(4 months ago)
Rights
Copyright 2024 Red Hat, Inc.
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/xen?distro=fedora-38 fedora xen < 4.17.4.1.fc38 fedora-38
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date