SUSE: 2012:1135-1 Important: Xen DoS Fixes Available Now
suse
September 7, 2012
An update that fixes three vulnerabilities is now available
Summary
XEN was updated to fix multiple bugs and security issues.
The following security issues have been fixed:
* CVE-2012-3494: xen: hypercall set_debugreg
vulnerability (XSA-12)
* CVE-2012-3515: xen: Qemu VT100 emulation
vulnerability (XSA-17)
* CVE-2012-2625: xen: pv bootloader doesn't check the
size of the bzip2 or lzma compressed kernel, leading to
denial of service
Security Issue references:
* CVE-2012-3494
Topics Covered
References
#762484 #777084 #777090
Cross- CVE-2012-2625 CVE-2012-3494 CVE-2012-3515
Affected Products:
SUSE Linux Enterprise Server 10 SP4
SUSE Linux Enterprise Desktop 10 SP4
SLE SDK 10 SP4
https://www.suse.com/security/cve/CVE-2012-2625.html
https://www.suse.com/security/cve/CVE-2012-3494.html
https://www.suse.com/security/cve/CVE-2012-3515.html
https://login.microfocus.com/nidp/app/login?sid=0
https://login.microfocus.com/nidp/app/login?sid=0
https://login.microfocus.com/nidp/app/login?sid=0
https://login.microfocus.com/nidp/app/login?sid=0
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2012:1135-1
Rating: important
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!