Updated xen packages fix security vulnerabilities
Publication date: 10 Apr 2024Modification date: 10 Apr 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2023-46841 , CVE-2023-28746 , CVE-2024-2193
Description
x86: shadow stack vs exceptions from emulation stubs. (CVE-2023-46841)
x86: Register File Data Sampling. (CVE-2023-28746)
GhostRace: Speculative Race Conditions. (CVE-2024-2193)
References
- https://bugs.mageia.org/show_bug.cgi?id=32905
- https://www.openwall.com/lists/oss-security/2024/02/27/2
- https://www.openwall.com/lists/oss-security/2024/03/12/13
- https://www.openwall.com/lists/oss-security/2024/03/12/14
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46841
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28746
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2193
SRPMS
9/core
- xen-4.17.3-1.1.mga9