SUSE: 2016:2100-1 Important: Xen Security Update for 26 Issues

suse

August 18, 2016

An update that solves 26 vulnerabilities and has 16 fixes An update that solves 26 vulnerabilities and has 16 fixes An update that solves 26 vulnerabilities and has 16 fixes is now...

Summary

This update for xen fixes the several issues. These security issues were fixed: - CVE-2014-3672: The qemu implementation in libvirt Xen allowed local guest OS users to cause a denial of service (host disk consumption) by writing to stdout or stderr (bsc#981264). - CVE-2016-3158: The xrstor function did not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allowed local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits (bsc#973188). - CVE-2016-3159: The fpu_fxrstor function in arch/x86/i387.c did not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allowed local guest OS users to obtain sensitive

Topics Covered

security advisory denial of service buffer overflow critical update important SUSE Linux xen

References

#954872 #955399 #957986 #958848 #961600 #963161

#964427 #967630 #973188 #974038 #974912 #975130

#975138 #975907 #976058 #976111 #978164 #978295

#978413 #979035 #979620 #979670 #980716 #980724

#981264 #981276 #982024 #982025 #982026 #982224

#982225 #982286 #982695 #982960 #983973 #983984

#985503 #986586 #988675 #989235 #990843 #990923

Cross- CVE-2014-3672 CVE-2016-3158 CVE-2016-3159

CVE-2016-3710 CVE-2016-3960 CVE-2016-4001

CVE-2016-4002 CVE-2016-4020 CVE-2016-4037

CVE-2016-4439 CVE-2016-4441 CVE-2016-4453

CVE-2016-4454 CVE-2016-4952 CVE-2016-4962

CVE-2016-4963 CVE-2016-5105 CVE-2016-5106

CVE-2016-5107 CVE-2016-5126 CVE-2016-5238

CVE-2016-5337 CVE-2016-5338 CVE-2016-5403

CVE-2016-6258 C...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2016:2100-1

Rating: important

Topics Covered

security advisory denial of service buffer overflow critical update important SUSE Linux xen

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2016:2100-1 Important: Xen Security Update for 26 Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2016:2100-1 Important: Xen Security Update for 26 Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!