Multiple vulnerabilities have been found in Xen, the worst of which could result in privilege escalation.
Package | app-emulation/xen on all architectures |
---|---|
Affected versions | < 4.10.3-r1 |
Unaffected versions | >= 4.10.3-r1 |
Package | app-emulation/xen-pvgrub on all architectures |
---|---|
Affected versions | < 4.10.3 |
Unaffected versions | >= 4.10.3 |
Package | app-emulation/xen-tools on all architectures |
---|---|
Affected versions | < 4.10.3-r2 |
Unaffected versions | >= 4.10.3-r2 |
Xen is a bare-metal hypervisor.
Multiple vulnerabilities have been discovered in Xen. Please review the referenced XSA security advisories.
Please review the referenced XSA security advisories for details.
There is no known workaround at this time.
All Xen users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=app-emulation/xen-4.10.3-r2"
All Xen pvgrub users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=app-emulation/xen-pvgrub-4.10.3-r2"
All Xen tools users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=app-emulation/xen-tools-4.10.3-r2"
Release date
April 04, 2019
Latest revision
April 04, 2019: 2
Severity
normal
Exploitable
remote
Bugzilla entries