xen: Multiple vulnerabilities (CVE-2019-19577, CVE-2019-19578, CVE-2019-19580, CVE-2019-19581, CVE-2019-19582, CVE-2019-19583)
CVE-2019-19581, CVE-2019-19582, XSA-307: find_next_bit() issues
All versions of Xen are vulnerable.
Reference:
http://xenbits.xen.org/xsa/advisory-307.html
CVE-2019-19583, XSA-308: VMX: VMentry failure with debug exceptions and blocked states
All versions of Xen are affected.
Reference:
http://xenbits.xen.org/xsa/advisory-308.html
CVE-2019-19578, XSA-309: Linear pagetable use / entry miscounts
All versions of Xen are vulnerable.
Only x86 systems are affected. Arm systems are not affected.
Reference:
http://xenbits.xen.org/xsa/advisory-309.html
CVE-2019-19580, XSA-310: Further issues with restartable PV type change operations
Reference:
http://xenbits.xen.org/xsa/advisory-310.html
CVE-2019-19577, XSA-311: Bugs in dynamic height handling for AMD IOMMU pagetables
Reference:
http://xenbits.xen.org/xsa/advisory-311.html
Affected branches:
-
master -
3.11-stable -
3.10-stable -
3.9-stable -
3.8-stable