Fedora 15 : xen-4.1.0-2.fc15 (2011-6859)
High Nessus Plugin ID 54574
SynopsisThe remote Fedora host is missing a security update.
DescriptionOverflows in kernel decompression can allow root on xen PV guest to gain privileged access to base domain, or access to xen configuration info. Lack of error checking could allow DoS attack from guest.
[CVE-2011-1583] Don't require /usr/bin/qemu-nbd as it isn't used at present.
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpdate the affected xen package.