[ GLSA 201309-24 ] Xen: Multiple vulnerabilities

[GLSA]

Gentoo Linux Security Advisory

Title: Xen: Multiple vulnerabilities (GLSA 201309-24)
Severity: high
Exploitable: local
Date: September 27, 2013
Bug(s): #385319, #386371, #420875, #431156, #454314, #464724, #472214, #482860
ID: 201309-24

Synopsis

Multiple vulnerabilities have been found in Xen, allowing attackers
on a Xen Virtual Machine to execute arbitrary code, cause Denial of
Service, or gain access to data on the host.


Background

Xen is a bare-metal hypervisor.

Affected Packages

Package: app-emulation/xen
Vulnerable: < 4.2.2-r1
Unaffected: >= 4.2.2-r1
Architectures: All supported architectures

Package: app-emulation/xen-tools
Vulnerable: < 4.2.2-r3
Unaffected: >= 4.2.2-r3
Architectures: All supported architectures

Package: app-emulation/xen-pvgrub
Vulnerable: < 4.2.2-r1
Unaffected: >= 4.2.2-r1
Architectures: All supported architectures


Description

Multiple vulnerabilities have been discovered in Xen. Please review the
CVE identifiers referenced below for details.


Impact

Guest domains could possibly gain privileges, execute arbitrary code, or
cause a Denial of Service on the host domain (Dom0). Additionally, guest
domains could gain information about other virtual machines running on
the same host or read arbitrary files on the host.


Workaround

The CVEs listed below do not currently have fixes, but only apply to Xen
setups which have “tmem” specified on the hypervisor command line.
TMEM is not currently supported for use in production systems, and
administrators using tmem should disable it.
Relevant CVEs:
* CVE-2012-2497
* CVE-2012-6030
* CVE-2012-6031
* CVE-2012-6032
* CVE-2012-6033
* CVE-2012-6034
* CVE-2012-6035
* CVE-2012-6036


Resolution

All Xen users should upgrade to the latest version: