Rapid7 Vulnerability & Exploit Database

ELSA-2011-1401 Moderate: Oracle Linux xen security and bug fix update

Back to Search

ELSA-2011-1401 Moderate: Oracle Linux xen security and bug fix update

Severity
4
CVSS
(AV:L/AC:H/Au:N/C:N/I:N/A:C)
Published
10/25/2011
Created
07/25/2018
Added
12/20/2011
Modified
07/04/2017

Description

Oracle Linux Security Advisory ELSA-2011-1401 https://rhn.redhat.com/errata/RHSA-2011-1401.html The following updated rpms for Oracle Linux 5 have been uploaded to the Unbreakable Linux Network: i386: xen-libs-3.0.3-132.el5_7.2.i386.rpm xen-3.0.3-132.el5_7.2.i386.rpm xen-devel-3.0.3-132.el5_7.2.i386.rpm x86_64: xen-libs-3.0.3-132.el5_7.2.i386.rpm xen-libs-3.0.3-132.el5_7.2.x86_64.rpm xen-3.0.3-132.el5_7.2.x86_64.rpm xen-devel-3.0.3-132.el5_7.2.i386.rpm xen-devel-3.0.3-132.el5_7.2.x86_64.rpm ia64: xen-libs-3.0.3-132.el5_7.2.ia64.rpm xen-3.0.3-132.el5_7.2.ia64.rpm xen-devel-3.0.3-132.el5_7.2.ia64.rpm SRPMS: http://oss.oracle.com/ol5/SRPMS-updates/xen-3.0.3-132.el5_7.2.src.rpm Description of changes: [3.0.3-132.el5_7.2] - Release device backends before restarting guest on the destination machine (rhbz 743850) - Fix SCSI buffer overflow and disable SCSI CD-ROMs (rhbz 736289) [3.0.3-132.el5_7.1] - hotplug: set netback/tap MTU to the same value as the bridge MTU (rhbz 738608) - copy the MTU of the physical interface to the Xen bridge (rhbz 738610)

Solution(s)

  • oracle-linux-upgrade-xen
  • oracle-linux-upgrade-xen-devel
  • oracle-linux-upgrade-xen-libs

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;