Bug 377501 (CVE-2007-5906)
| Summary: | CVE-2007-5906 kernel-xen 3.1.1 virtual guest system denial of service (hypervisor crash) possibility | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Jan Lieskovsky <jlieskov> |
| Component: | vulnerability | Assignee: | Bill Burns <bburns> |
| Status: | CLOSED CURRENTRELEASE | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | low | ||
| Version: | unspecified | CC: | clalance, kernel-maint, kreilly, security-response-team, xen-maint |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2009-09-10 16:30:52 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 386901, 386911, 390091, 390101, 390111, 390121 | ||
| Bug Blocks: | |||
|
Description
Jan Lieskovsky
2007-11-12 10:53:47 UTC
Will this bugzilla get the details needed to fix the bug, once those details become available? The official post is here -- there is also patch provided: http://lists.xensource.com/archives/html/xen-devel/2007-10/msg01048.html Note that the rebase of the Xen hypervisor to 3.1.2 in the 5.2 kernel (RHBA-2008:0314) caused this issue to be fixed for Enterprise Linux 5. I'll therefore update that advisory so that it references this CVE name. This was fixed long ago in all of the relevant released, so I'll close out this tracker bug. Chris Lalancette |