SUSE Linux 12-SP1 Security Advisory 2016:2093-1: Important DoS Issues

suse

August 17, 2016

An update that solves 27 vulnerabilities and has 18 fixes An update that solves 27 vulnerabilities and has 18 fixes An update that solves 27 vulnerabilities and has 18 fixes is now...

Summary

This update for xen to version 4.5.3 fixes the several issues. These security issues were fixed: - CVE-2016-6258: Potential privilege escalation in PV guests (XSA-182) (bsc#988675). - CVE-2016-6259: Missing SMAP whitelisting in 32-bit exception / event delivery (XSA-183) (bsc#988676). - CVE-2016-5337: The megasas_ctrl_get_info function allowed local guest OS administrators to obtain sensitive host memory information via vectors related to reading device control information (bsc#983973). - CVE-2016-5338: The (1) esp_reg_read and (2) esp_reg_write functions allowed local guest OS administrators to cause a denial of service (QEMU process crash) or execute arbitrary code on the host via vectors related to the information transfer buffer (bsc#983984).

Topics Covered

security advisory DoS patch SUSE updates xen escalation issues

References

#900418 #949889 #953339 #953362 #953518 #954872

#957986 #958848 #961600 #963161 #964427 #973188

#973631 #974038 #975130 #975138 #975907 #976058

#976111 #978164 #978295 #978413 #979620 #979670

#980716 #980724 #981264 #981276 #982024 #982025

#982026 #982224 #982225 #982286 #982695 #982960

#983973 #983984 #984981 #985503 #986586 #988675

#988676 #990843 #990923

Cross- CVE-2014-3672 CVE-2016-3158 CVE-2016-3159

CVE-2016-3710 CVE-2016-3960 CVE-2016-4001

CVE-2016-4002 CVE-2016-4020 CVE-2016-4037

CVE-2016-4439 CVE-2016-4441 CVE-2016-4453

CVE-2016-4454 CVE-2016-4952 CVE-2016-4962

CVE-2016-4963 CVE-2016-5105 CVE-2016-5106

CVE-2016-5107 CVE-2016-5126 CVE-2016-5238

CVE-2016-5337 CVE-2016-5338 CVE-2016-5403

...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2016:2093-1

Rating: important

Topics Covered

security advisory DoS patch SUSE updates xen escalation issues

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE Linux 12-SP1 Security Advisory 2016:2093-1: Important DoS Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE Linux 12-SP1 Security Advisory 2016:2093-1: Important DoS Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!