Alerts This Week
Warning Icon 1 666
Alerts This Week
Warning Icon 1 666

openSUSE 12.1: 2012:1687-1 Important: Xen Denial Of Service Fix

opensuse
Calendar Grey December 23, 2012
Dist Opensuse Esm H88
Addresses several denial of service problems and security flaws in the openSUSE xen update notification.
An update that solves 6 vulnerabilities and has three fixes An update that solves 6 vulnerabilities and has three fixes An update that solves 6 vulnerabilities and has three fixes ...

Description

XEN was updated to fix various denial of service issues.

- bnc#789945 - CVE-2012-5510: xen: Grant table version

switch list corruption vulnerability (XSA-26)

- bnc#789944 - CVE-2012-5511: xen: Several HVM operations

do not validate the range of their inputs (XSA-27)

- bnc#789940 - CVE-2012-5512: xen: HVMOP_get_mem_access

crash / HVMOP_set_mem_access information leak (XSA-28)

- bnc#789951 - CVE-2012-5513: xen: XENMEM_exchange may

overwrite hypervisor memory (XSA-29)

- bnc#789948 - CVE-2012-5514: xen: Missing unlock in

guest_physmap_mark_populate_on_demand() (XSA-30)

- bnc#789950 - CVE-2012-5515: xen: Several memory hypercall

operations allow invalid extent order values (XSA-31)

- bnc#789988 - FATAL PAGE FAULT in hypervisor

(arch_do_domctl)

- Upstream patches from Jan

26132-tmem-save-NULL-check.patch

26134-x86-shadow-invlpg-check.patch

26148-vcpu-timer-overflow.patch (Replaces

CVE-2012-4535-xsa20.patch)

...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory denial of service important update openSUSE xen fix

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE 12.1:

zypper in -t patch openSUSE-2012-869

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE 12.1 (i586 x86_64):

xen-debugsource-4.1.3_06-1.25.1

xen-devel-4.1.3_06-1.25.1

xen-kmp-default-4.1.3_06_k3.1.10_1.16-1.25.1

xen-kmp-default-debuginfo-4.1.3_06_k3.1.10_1.16-1.25.1

xen-kmp-desktop-4.1.3_06_k3.1.10_1.16-1.25.1

xen-kmp-desktop-debuginfo-4.1.3_06_k3.1.10_1.16-1.25.1

xen-libs-4.1.3_06-1.25.1

xen-libs-debuginfo-4.1.3_06-1.25.1

xen-tools-domU-4.1.3_06-1.25.1

xen-tools-domU-debuginfo-4.1.3_06-1.25.1

- openSUSE 12.1 (x86_64):

xen-4.1.3_06-1.25.1

xen-doc-html-4.1.3_06-1.25.1

xen-doc-pdf-4.1.3_06-1.25.1

xen-libs-32bit-4.1.3_06-1.25.1

xen-libs-debuginfo-32bit-4.1.3_06-1.25.1

xen-tools-4.1.3_06-1.25.1

xen-tools-debuginfo-4.1.3_06-1.25.1

- openSUSE 12.1 (ia64):

xen-libs-debuginfo-x86-4.1.3_06-1.25.1

xen-libs-x86-4.1.3_06-1.25.1

- openSUSE 12.1 (i586):

xen-kmp-pae-4.1.3_06_k3.1.10_1.16-1.25.1

xen-kmp-pae-debuginfo-4.1.3_06_k3.1.10_1.16-1.25.1

References

https://www.suse.com/security/cve/CVE-2012-5510.html

https://www.suse.com/security/cve/CVE-2012-5511.html

https://www.suse.com/security/cve/CVE-2012-5512.html

https://www.suse.com/security/cve/CVE-2012-5513.html

https://www.suse.com/security/cve/CVE-2012-5514.html

https://www.suse.com/security/cve/CVE-2012-5515.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2012:1687-1
Rating: important
Affected Products: openSUSE 12.1

Topics%20covered

Topics Covered

security advisory denial of service important update openSUSE xen fix

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here