Debian Long Term Support / LTS Security Information / 2018 / Security Information -- DLA-1577-1 xen

Debian Security Advisory

DLA-1577-1 xen -- LTS security update

Date Reported:

12 Nov 2018

Affected Packages:

xen

Vulnerable:

Yes

Security database references:

In Mitre's CVE dictionary: CVE-2018-7540, CVE-2018-7541, CVE-2018-8897, CVE-2018-12891, CVE-2018-12893, CVE-2018-15469, CVE-2018-15470.

More information:

Multiple vulnerabilities have been discovered in the Xen hypervisor, which could result in denial of service, informations leaks or privilege escalation.

For Debian 8 Jessie, these problems have been fixed in version 4.4.4lts4-0+deb8u1.

We recommend that you upgrade your xen packages.

Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS