SECURITY: Fedora 36 Update: xen-4.16.1-1.fc36
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-b50023a180
2022-05-07 04:08:14.314849
--------------------------------------------------------------------------------
Name : xen
Product : Fedora 36
Version : 4.16.1
Release : 1.fc36
URL : http://xen.org/
Summary : Xen is a virtual machine monitor
Description :
This package contains the XenD daemon and xm command line
tools, needed to manage virtual machines running under the
Xen hypervisor
--------------------------------------------------------------------------------
Update Information:
update to xen-4.16.1 strip .efi file to help EFI partitions with limited space
---- Racy interactions between dirty vram tracking and paging log dirty
hypercalls [XSA-397, CVE-2022-26356] race in VT-d domain ID cleanup [XSA-399,
CVE-2022-26357] IOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues
[XSA-400, CVE-2022-26358, CVE-2022-26359, CVE-2022-26360, CVE-2022-26361]
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 14 2022 Michael Young - 4.16.1-1
- update to xen-4.16.1
remove or adjust patches now included or superceded upstream
renumber patches
- strip .efi file to help EFI partitions with limited space
* Tue Apr 5 2022 Michael Young - 4.16.0-6
- Racy interactions between dirty vram tracking and paging log dirty
hypercalls [XSA-397, CVE-2022-26356]
- race in VT-d domain ID cleanup [XSA-399, CVE-2022-26357]
- IOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues [XSA-400,
CVE-2022-26358, CVE-2022-26359, CVE-2022-26360, CVE-2022-26361]
- additional patches so above applies cleanly
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-b50023a180' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
A xen security update has been released for Fedora 36.