| xen-3.0.3-148.el5_11.x86_64
              [1.9 MiB] | Changelog
              by Miroslav Rezanina (2016-12-09): - xen-qemu-ioport-array-overflow.patch [bz#1401521]
- Resolves: bz#1401521
  (CVE-2016-9637 xsa199 xen: qemu ioport array overflow (XSA-199) [rhel-5.11.z]) | 
            | xen-3.0.3-147.el5_11.x86_64
              [1.9 MiB] | Changelog
              by Miroslav Rezanina (2015-10-01): - net: add checks to validate ring buffer pointers 
- Resolves: bz#1263273
  (xen: qemu: Heap overflow vulnerability in ne2000_receive() function) | 
            | xen-3.0.3-146.el5_11.x86_64
              [1.9 MiB] | Changelog
              by Miroslav Rezanina (2015-05-11): - xen-fdc-force-the-fifo-access-to-be-in-bounds-of-the-all.patch
- xen-FDC-Fix-buffer-overflow-Herv-Poussineau.patch
- Resolves: bz#1219333
 (xen: qemu: floppy disk controller flaw [rhel-5.11.z]) | 
            | xen-3.0.3-142.el5_9.2.x86_64
              [1.9 MiB] | Changelog
              by Miroslav Rezanina (2013-02-19): - e1000: discard packets that are too long if !SBP and !LPE (rhbz 910843)
- e1000: discard oversized packets based on SBP|LPE (rhbz 910843) | 
            | xen-3.0.3-142.el5_9.1.x86_64
              [1.9 MiB] | Changelog
              by Miroslav Rezanina (2013-01-23): - libxc: move error checking next to the function which returned the error (rhbz 876997)
- libxc: builder: limit maximum size of   kernel/ramdisk (rhbz 876997) | 
            | xen-3.0.3-135.el5_8.5.x86_64
              [1.9 MiB] | Changelog
              by Miroslav Rezanina (2012-09-03): - console: Prevent escape sequence length overflow (rhbz 851253) | 
            | xen-3.0.3-135.el5_8.4.x86_64
              [1.9 MiB] | Changelog
              by Miroslav Rezanina (2012-07-18): - pygrub: Improve handling of big files (rhbz 821704) | 
            | xen-3.0.3-135.el5_8.2.x86_64
              [1.9 MiB] | Changelog
              by Miroslav Rezanina (2012-02-27): - Fix broken timestamp log (rhbz 797836) | 
            | xen-3.0.3-132.el5_7.2.x86_64
              [1.9 MiB] | Changelog
              by Miroslav Rezanina (2011-10-10): - Release device backends before restarting guest on the destination machine (rhbz 743850)
- Fix SCSI buffer overflow and disable SCSI CD-ROMs (rhbz 736289) | 
            | xen-3.0.3-120.el5_6.2.x86_64
              [1.9 MiB] | Changelog
              by Miroslav Rezanina (2011-04-27): - Fix logic and integer overflow in xc_try_bzip2_decode() (rhbz 696938)
- Fix logic and integer overflow in xc_try_lzma_decode() (rhbz 696938)
- Fix integer and buffer overflows in xc_dom_probe_bzimage_kernel() (rhbz 696938) | 
            | xen-3.0.3-94.el5_4.1.x86_64
              [1.8 MiB] | Changelog
              by Jiri Denemark (2009-09-24): - Fix race condition on domain reboot (rhbz 525143)
- Avoid multiple restarts of a domain (rhbz 525141)
- Add grub.conf password protection support to pygrub (rhbz 525142)
- Ignore unimplemented PHYSDEVOP_map_pirq (rhbz 525149) | 
            | xen-3.0.3-64.el5_2.9.x86_64
              [1.8 MiB] | Changelog
              by Daniel P. Berrange (2008-12-18): - More fixes for Xenstore unsafe data access (CVE-2008-4405, rhbz #464817)
- Fix block-detach regression due to (CVE-2008-4405, rhbz #473882) | 
            | xen-3.0.3-64.el5_2.3.x86_64
              [1.8 MiB] | Changelog
              by Daniel Berrange (2008-08-29): - Fix overflow in qemu-img (rhbz #454651) | 
            | xen-3.0.3-41.el5_1.5.x86_64
              [1.9 MiB] | Changelog
              by Markus Armbruster (2008-04-30): - Disable QEMU image format auto-detection CVE-2008-2004 (rhbz #444700) | 
            | xen-3.0.3-41.el5.x86_64
              [1.9 MiB] | Changelog
              by Chris Lalancette (2007-09-25): - QEmu NE2000 overflow check - CVE-2007-1321 (rhbz #296281)
- Pygrub guest escape - CVE-2007-4993 (rhbz #302831) | 
            | xen-3.0.3-25.0.4.el5.x86_64
              [1.8 MiB] | Changelog
              by Chris Lalancette (2007-09-25): - QEmu cirrus bitblit bounds check - CVE-2007-1320 (rhbz #296271)
- QEmu NE2000 overflow check - CVE-2007-1321 (rhbz #296271)
- Pygrub guest escape - CVE-2007-4993 (rhbz #302821) |