Fedora 24 : xen (2016-01cc766201) (Bunker Buster)
High Nessus Plugin ID 92766
SynopsisThe remote Fedora host is missing a security update.
Descriptionx86: Privilege escalation in PV guests [XSA-182, CVE-2016-6258] x86:
Missing SMAP whitelisting in 32-bit exception / event delivery [XSA-183, CVE-2016-6259] virtio: unbounded memory allocation issue [XSA-184, CVE-2016-5403] Qemu: scsi: esp: OOB write access in esp_do_dma [CVE-2016-6351]
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpdate the affected xen package.