1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 4977-1] xen security update

    From Moritz Muehlenhoff@21:1/5 to All on Mon Sep 20 21:10:03 2021
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-4977-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff September 20, 2021 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : xen
    CVE ID : CVE-2021-28694 CVE-2021-28695 CVE-2021-28696 CVE-2021-28697
    CVE-2021-28698 CVE-2021-28699 CVE-2021-28700 CVE-2021-28701

    Multiple vulnerabilities have been discovered in the Xen hypervisor,
    which could result in privilege escalation, denial of service or
    information leaks.

    With the end of upstream support for the 4.11 branch, the version of xen
    in the oldstable distribution (buster) is no longer supported. If you
    rely on security support for your Xen installation an update to the
    stable distribution (bullseye) is recommended.

    For the stable distribution (bullseye), these problems have been fixed in version 4.14.3-1~deb11u1.

    We recommend that you upgrade your xen packages.

    For the detailed security status of xen please refer to
    its security tracker page at:
    https://security-tracker.debian.org/tracker/xen

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmFI3AMACgkQEMKTtsN8 TjZ1Iw//epG32XpEtWhVl2o9/gaZFXZ0GpvCtBmNIW+s5teDoQI+vjJEV5G+9zqm ldmvG9s33dqAFsusesLDmeEIv8CcQva3XrYYqBe/argsMX4geecXq9fw17hpVCSZ Y/DZ4HSg2N6t+D8w8ESmJCg1WbVMc/8Ftar5iqZTfxuSwOdgkv/M24McvZUj5i6e Gl2y5mnk+8pIpz4i+nJ+4quiKK5UvLQTnnD5gpizHcPJ6rIv5UK4jQAnCWhdw0Rv iIfcw2ikKVCiyP7M9UZc9GrtyhIzsrIXBefH0Noxt+BWUj3Kggz9Uz4gp7YMs/Ck qjiWNXX3vV4VuKstjvGeGA9LJ4BKlAw1eTfEBVMcKATuUXBeU43ZAvlH3G7MmTgU FE15TwoSD4bLEC+Dtmm7SwtXfbuE62N0abwYjk7BVI+KH+hIat6A6IKnEwv6odWa drqxqQcg5JXWWWrnX7yRzjiA7zeZu4diKRHeR3h+nudZ4Dh9jI7/I2eLTuAWyuir 0UBZfzJsw55ZPKONjkC3xmK7+upQhJQR5UY5bnMgeOv3QTie12OkeJo3MHaGr6dx OUygKzoF9zXifVdz5n7L9uDOcEpXJX2bgmPhFMQMKWpo3GuqSTzd6H5bUq9Kpxac EoLmvIzD1C18Dwn/8/nWyBVEUG0XS9jqxWoWTUS3Smem8a2OqpY=
    =nnsk
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)