[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-announce] Xen 4.1.3 and 4.0.4 released

To: xen-announce@xxxxxxxxxxxxx
From: Lars Kurth <lars.kurth@xxxxxxx>
Date: Fri, 10 Aug 2012 16:04:05 +0100
Delivery-date: Fri, 10 Aug 2012 15:07:59 +0000
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:message-id:date:from:reply-to:user-agent:mime-version:to :subject:content-type:content-transfer-encoding; bh=NTg4caIgyjv+rXdLxH5ZRSVLfGYiAb63bcB4UJPfv3o=; b=JqvNcTvr0MseuGcx+IagenUgznPdglWH12PvQcM5MH9c7jZqufVzN7SlZ30jsdivj9 NKc0FmjAWiO6dvPt93s0EuHOFm7AOESiB6dRQPGL/wcNpMfqOVmQfw6zMpVxHxCzaKph J9xech7kbUvI4bTFmWWSpi2OVFW3WxhjMAdHTzoUDyn4F/6YqSh07fR8QqlJlbSEy6Nl QRdsbAeFgOexE8rVqAAzlQuPgVtcKUL2yTBBqoYpVNfqndCvdf+RyMYmgrovJjx6q+LR Oj5H7Cn0G/zm9Dk+ibAlscZlRl6jAopiWjHfecwKRODQC8JzSOX4W0SsZy49mySlmDGl CP3Q==
List-id: "Xen announcements \(low volume\)" <xen-announce.lists.xen.org>

Hi,

Xen.org is pleased to announce the release of Xen 4.0.4 and 4.1.3. These are 
available immediately from the download pages
 * http://xen.org/download/index_4.1.3.html
 * http://xen.org/download/index_4.0.3.html
and their respective mercurial repositories:
 *http://xenbits.xen.org/xen-4.0-testing.hg  (tag RELEASE-4.0.4)
 *http://xenbits.xen.org/xen-4.1-testing.hg  (tag RELEASE-4.1.3)

These fix the following critical vulnerabilities:
 * CVE-2012-0217 / XSA-7: PV guest privilege escalation vulnerability
 * CVE-2012-0218 / XSA-8: guest denial of service on syscall/sysenter exception 
generation
 * CVE-2012-2934 / XSA-9: PV guest host Denial of Service
 * CVE-2012-3432 / XSA-10: HVM guest user mode MMIO emulation DoS vulnerability
 * CVE-2012-3433 / XSA-11: HVM guest destroy p2m teardown host DoS vulnerability

We recommend all users of the 4.0 and 4.1 stable series to update to these 
latest point releases.

Among many bug fixes and improvements (over 100 since Xen 4.1.2):
 * Updates for the latest Intel/AMD CPU revisions
 * Bug fixes and improvements to the libxl tool stack
 * Bug fixes for IOMMU handling (device passthrough to HVM guests)
 * Bug fixes for host kexec/kdump

Best Regards,
Lars & Keir


_______________________________________________
Xen-announce mailing list
Xen-announce@xxxxxxxxxxxxx
http://lists.xen.org/xen-announce

Prev by Date: [Xen-announce] Less then 4 weeks to XenSummit: Aug 27-28, San Diego
Previous by thread: [Xen-announce] Less then 4 weeks to XenSummit: Aug 27-28, San Diego
Index(es):
- Date
- Thread