[3.7] xen: Multiple vulnerabilities (CVE-2018-19961, CVE-2018-19962, CVE-2018-18883, CVE-2018-19965, CVE-2018-19966, CVE-2018-19967)
CVE-2018-19961, CVE-2018-19962, XSA-275: insufficient TLB flushing / improper large page mappings with AMD IOMMUs
Reference:
http://xenbits.xen.org/xsa/advisory-275.html
CVE-2018-18883, XSA-278: x86: Nested VT-x usable even when disabled
Reference:
http://xenbits.xen.org/xsa/advisory-278.html
CVE-2018-19965, XSA-279: x86: DoS from attempting to use INVPCID with a non-canonical addresses
Reference:
http://xenbits.xen.org/xsa/advisory-279.html
CVE-2018-19966, XSA-280: Fix for XSA-240 conflicts with shadow paging
Reference:
http://xenbits.xen.org/xsa/advisory-280.html
CVE-2018-19967, XSA-282: guest use of HLE constructs may lock up host
Reference:
http://xenbits.xen.org/xsa/advisory-282.html
(from redmine: issue id 9845, created on 2019-01-10, closed on 2019-02-14)
- Relations:
- parent #9843 (closed)
- Changesets:
- Revision f39fc760 on 2019-02-04T08:21:42Z:
main/xen: security fixes
CVE-2018-19961, CVE-2018-19962, XSA-275
CVE-2018-18883, XSA-278
CVE-2018-19965, XSA-279
CVE-2018-19966, XSA-280
CVE-2018-19967, XSA-282
Fixes #9845