openSUSE Leap 42.2 Advisory: 2017:1221-1 Important Xen Threats

opensuse

May 9, 2017

An update that solves two vulnerabilities and has 6 fixes An update that solves two vulnerabilities and has 6 fixes An update that solves two vulnerabilities and has 6 fixes is now...

Description

This update for xen fixes several issues.

These security issues were fixed:

- A malicious 64-bit PV guest may be able to access all of system memory,

allowing for all of privilege escalation, host crashes, and information

leaks by placing a IRET hypercall in the middle of a multicall batch

(XSA-213, bsc#1034843)

- A malicious pair of guests may be able to access all of system memory,

allowing for all of privilege escalation, host crashes, and information

leaks because of a missing check when transfering pages via

GNTTABOP_transfer (XSA-214, bsc#1034844).

- CVE-2017-7718: hw/display/cirrus_vga_rop.h allowed local guest OS

privileged users to cause a denial of service (out-of-bounds read and

QEMU process crash) via vectors related to copying VGA data via the

cirrus_bitblt_rop_fwd_transp_ and cirrus_bitblt_rop_fwd_ functions

(bsc#1034994).

- CVE-2016-9603: A privileged user within the guest VM could have caused a

...

Read the Full Advisory

Topics Covered

security advisory privilege escalation important memory access xen openSUSE

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE Leap 42.2:

zypper in -t patch openSUSE-2017-563=1

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE Leap 42.2 (i586 x86_64):

xen-debugsource-4.7.2_04-11.6.1

xen-devel-4.7.2_04-11.6.1

xen-libs-4.7.2_04-11.6.1

xen-libs-debuginfo-4.7.2_04-11.6.1

xen-tools-domU-4.7.2_04-11.6.1

xen-tools-domU-debuginfo-4.7.2_04-11.6.1

- openSUSE Leap 42.2 (x86_64):

xen-4.7.2_04-11.6.1

xen-doc-html-4.7.2_04-11.6.1

xen-libs-32bit-4.7.2_04-11.6.1

xen-libs-debuginfo-32bit-4.7.2_04-11.6.1

xen-tools-4.7.2_04-11.6.1

xen-tools-debuginfo-4.7.2_04-11.6.1

References

https://www.suse.com/security/cve/CVE-2016-9603.html

https://www.suse.com/security/cve/CVE-2017-7718.html

https://bugzilla.suse.com/1022703

https://bugzilla.suse.com/1028655

https://bugzilla.suse.com/1029827

https://bugzilla.suse.com/1030144

https://bugzilla.suse.com/1034843

https://bugzilla.suse.com/1034844

https://bugzilla.suse.com/1034994

https://bugzilla.suse.com/1036146

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: openSUSE-SU-2017:1221-1

Rating: important

Affected Products: openSUSE Leap 42.2

Topics Covered

security advisory privilege escalation important memory access xen openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks