[3.8] xen: Multiple vulnerabilities (CVE-2018-19961, CVE-2018-19962, CVE-2018-18883, CVE-2018-19965, CVE-2018-19966, CVE-2018-19967)
CVE-2018-19961, CVE-2018-19962, XSA-275: insufficient TLB flushing / improper large page mappings with AMD IOMMUs
Reference:
http://xenbits.xen.org/xsa/advisory-275.html
CVE-2018-18883, XSA-278: x86: Nested VT-x usable even when disabled
Reference:
http://xenbits.xen.org/xsa/advisory-278.html
CVE-2018-19965, XSA-279: x86: DoS from attempting to use INVPCID with a non-canonical addresses
Reference:
http://xenbits.xen.org/xsa/advisory-279.html
CVE-2018-19966, XSA-280: Fix for XSA-240 conflicts with shadow paging
Reference:
http://xenbits.xen.org/xsa/advisory-280.html
CVE-2018-19967, XSA-282: guest use of HLE constructs may lock up host
Reference:
http://xenbits.xen.org/xsa/advisory-282.html
(from redmine: issue id 9844, created on 2019-01-10, closed on 2019-02-14)
- Relations:
- parent #9843 (closed)
- Changesets:
- Revision e28e1495 on 2019-01-31T15:35:32Z:
main/xen: security fixes
CVE-2018-19961, CVE-2018-19962, CVE-2018-18883,
CVE-2018-19965, CVE-2018-19966, CVE-2018-19967
Fixes #9844