This was fixed by the following update:
xen (4.1.6.1-0ubuntu0.12.04.10) precise-security; urgency=low
* Applying Xen Security Advisories:
- CVE-2016-2270 / XSA-154
* x86: make get_page_from_l1e() return a proper error code
* x86: make mod_l1_entry() return a proper error code
* x86/mm: fix mod_l1_entry() return value when encountering r/o MMIO
page
* x86: enforce consistent cachability of MMIO mappings
- CVE-2016-1570 / XSA-167
* x86/mm: PV superpage handling lacks sanity checks
- CVE-2016-1571 / XSA-168
* x86/VMX: prevent INVVPID failure due to non-canonical guest address
- CVE-2015-8615 / XSA-169
* x86: make debug output consistent in hvm_set_callback_via
- CVE-2016-2271 / XSA-170
* x86/VMX: sanitize rIP before re-entering guest
-- Stefan Bader <[email protected]> Thu, 25 Feb 2016 09:25:57
+0100
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2015-8615
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-1570
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-1571
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2016-2270
** Changed in: xen (Ubuntu)
Status: New => Fix Released
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1564916
Title:
CVE-2016-2271 / XSA-170
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/xen/+bug/1564916/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
