[3.9] xen: Multiple vulnerabilities (CVE-2018-3639, CVE-2018-3665, CVE-2018-12891, CVE-2018-12892, CVE-2018-12893)
CVE-2018-3639, XSA-263: Speculative Store Bypass
Reference:
http://xenbits.xen.org/xsa/advisory-263.html
CVE-2018-12891, XSA-264: preemption checks bypassed in x86 PV MM handling
Reference:
http://xenbits.xen.org/xsa/advisory-264.html
CVE-2018-12893, XSA-265: x86: #DB exception safety check can be triggered by a guest
Reference:
http://xenbits.xen.org/xsa/advisory-265.html
CVE-2018-12892, XSA-266: libxl fails to honour readonly flag on HVM emulated SCSI disks
Reference:
http://xenbits.xen.org/xsa/advisory-266.html
CVE-2018-3665, XSA-267: Speculative register leakage from lazy FPU context switching
Reference:
http://xenbits.xen.org/xsa/advisory-267.html
(from redmine: issue id 9096, created on 2018-07-17, closed on 2019-05-04)
- Relations:
- copied_to #9095
- parent #9095