Candidate: CVE-2015-2151
PublicDate: 2015-03-12 14:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2151
 http://xenbits.xen.org/xsa/advisory-123.html
Description:
 The x86 emulator in Xen 3.2.x through 4.5.x does not properly ignore
 segment overrides for instructions with register operands, which allows
 local guest users to obtain sensitive information, cause a denial of
 service (memory corruption), or possibly execute arbitrary code via
 unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: Felix Wilhelm
Assigned-to:
CVSS: 

Patches_xen-3.3:
Tags_xen-3.3: universe-binary
upstream_xen-3.3: ignored (reached end-of-life)
lucid_xen-3.3: ignored (reached end-of-life)
precise_xen-3.3: DNE
trusty_xen-3.3: DNE
trusty/esm_xen-3.3: DNE
utopic_xen-3.3: DNE
vivid_xen-3.3: DNE
devel_xen-3.3: DNE

Patches_xen:
 upstream: http://xenbits.xen.org/xsa/xsa123.patch (4.4, 4.5)
 upstream: http://xenbits.xen.org/xsa/xsa123-4.3-4.2.patch (4.3, 4.2)
Tags_xen: universe-binary
upstream_xen: needed
lucid_xen: DNE
precise_xen: released (4.1.6.1-0ubuntu0.12.04.5)
trusty_xen: released (4.4.1-0ubuntu0.14.04.4)
trusty/esm_xen: DNE (trusty was released [4.4.1-0ubuntu0.14.04.4])
utopic_xen: released (4.4.1-0ubuntu0.14.10.4)
vivid_xen: released (4.5.0-1ubuntu3)
devel_xen: released (4.5.0-1ubuntu3)