-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2021-03645e9807 2021-12-01 01:19:37.797895 --------------------------------------------------------------------------------
Name : xen Product : Fedora 35 Version : 4.15.1 Release : 4.fc35 URL : http://xen.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor
-------------------------------------------------------------------------------- Update Information:
guests may exceed their designated memory limit [XSA-385, CVE-2021-28706] PoD operations on misaligned GFNs [XSA-388, CVE-2021-28704, CVE-2021-28707 CVE-2021-28708] issues with partially successful P2M updates on x86 [XSA-389, CVE-2021-28705, CVE-2021-28709] certain VT-d IOMMUs may not work in shared page table mode [XSA-390, CVE-2021-28710] -------------------------------------------------------------------------------- ChangeLog:
* Tue Nov 23 2021 Michael Young m.a.young@durham.ac.uk - 4.15.1-4 - guests may exceed their designated memory limit [XSA-385, CVE-2021-28706] - PoD operations on misaligned GFNs [XSA-388, CVE-2021-28704, CVE-2021-28707 CVE-2021-28708] - issues with partially successful P2M updates on x86 [XSA-389, CVE-2021-28705, CVE-2021-28709] - certain VT-d IOMMUs may not work in shared page table mode [XSA-390, CVE-2021-28710] * Wed Oct 6 2021 Michael Young m.a.young@durham.ac.uk - 4.15.1-3 - rebuild (f36 only) for OCaml 4.13.1 * Tue Oct 5 2021 Michael Young m.a.young@durham.ac.uk - 4.15.1-2 - PCI devices with RMRRs not deassigned correctly [XSA-386, CVE-2021-28702] (#2011248) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2025046 - CVE-2021-28710 xen: Certain VT-d IOMMUs may not work in shared page table mode https://bugzilla.redhat.com/show_bug.cgi?id=2025046 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-03645e9807' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------