Bug 1013748
Summary: | CVE-2013-4355 CVE-2013-4356 CVE-2013-4361 xen: various flaws [fedora-all] | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Vincent Danen <vdanen> |
Component: | xen | Assignee: | Michael Young <m.a.young> |
Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | 19 | CC: | jforbes, kraxel, m.a.young, virt-maint |
Target Milestone: | --- | Keywords: | Security, SecurityTracking |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | xen-4.2.3-3.fc19 | Doc Type: | Release Note |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2013-10-13 19:47:53 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 1009553, 1009598, 1009817 |
Description
Vincent Danen
2013-09-30 17:12:06 UTC
Please use the following update submission link to create the Bodhi request for this issue as it contains the top-level parent bug(s) as well as this tracking bug. This will ensure that all associated bugs get updated when new packages are pushed to stable. Please also ensure that the "Close bugs when update is stable" option remains checked. Bodhi update submission link: https://admin.fedoraproject.org/updates/new/?type_=security&bugs=1009598,1013748 Adding parent bug 1009553 (for CVE-2013-4356). Please use this new bodhi update url when correcting these flaws: https://admin.fedoraproject.org/updates/new/?type_=security&bugs=1013748,1009598,1009553 Adding parent bug 1009817 (for CVE-2013-4361). Please use this new bodhi update url when correcting these flaws: https://admin.fedoraproject.org/updates/new/?type_=security&bugs=1013748,1009598,1009553,1009817 xen-4.2.3-3.fc18 has been submitted as an update for Fedora 18. https://admin.fedoraproject.org/updates/xen-4.2.3-3.fc18 xen-4.2.3-3.fc19 has been submitted as an update for Fedora 19. https://admin.fedoraproject.org/updates/xen-4.2.3-3.fc19 xen-4.3.0-7.fc20 has been submitted as an update for Fedora 20. https://admin.fedoraproject.org/updates/xen-4.3.0-7.fc20 The bugs CVE-2013-4355, CVE-2013-4356 and CVE-2013-4361 are fixed in xen-4.3.0-7.fc21 and xen-4.3.0-7.fc20. The bugs CVE-2013-4355 and CVE-2013-4361 are fixed in xen-4.2.3-3.fc19 and xen-4.2.3-3.fc18. CVE-2013-4356 only affects xen 4.3 and later, so isn't a bug in Fedora 19 and Fedora 18. Package xen-4.3.0-7.fc20: * should fix your issue, * was pushed to the Fedora 20 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing xen-4.3.0-7.fc20' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-2013-18300/xen-4.3.0-7.fc20 then log in and leave karma (feedback). xen-4.3.0-7.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report. xen-4.2.3-3.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report. xen-4.2.3-3.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report. xen-4.2.3-3.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report. xen-4.2.3-3.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report. |