SUSE Security Update: Security update for xen
______________________________________________________________________________

Announcement ID:    SUSE-SU-2017:3178-1
Rating:             important
References:         #1027519 #1055047 #1061075 #1063123 #1068187 
                    #1068191 
Cross-References:   CVE-2017-15289 CVE-2017-15597
Affected Products:
                    SUSE Linux Enterprise Software Development Kit 12-SP2
                    SUSE Linux Enterprise Server 12-SP2
                    SUSE Linux Enterprise Desktop 12-SP2
______________________________________________________________________________

   An update that solves two vulnerabilities and has four
   fixes is now available.

Description:

   This update for xen to version 4.7.4 (bsc#1027519) fixes several issues.

   This new feature was added:

   - Support migration of HVM domains larger than 1 TB

   These security issues were fixed:

   - bsc#1068187: Failure to recognize errors in the Populate on Demand (PoD)
     code allowed for DoS (XSA-246)
   - bsc#1068191: Missing p2m error checking in PoD code allowed unprivileged
     guests to retain a writable mapping of freed memory leading to
     information leaks, privilege escalation or DoS (XSA-247).
   - CVE-2017-15289: The mode4and5 write functions allowed local OS guest
     privileged users to cause a denial of service (out-of-bounds write
     access and Qemu process crash) via vectors related to dst calculation
     (bsc#1063123)
   - CVE-2017-15597: A grant copy operation being done on a grant of a dying
     domain allowed a malicious guest administrator to corrupt hypervisor
     memory, allowing for DoS or potentially privilege escalation and
     information leaks (bsc#1061075).

   This non-security issue was fixed:

   - bsc#1055047: Fixed --initrd-inject option in virt-install


Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Software Development Kit 12-SP2:

      zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1987=1

   - SUSE Linux Enterprise Server 12-SP2:

      zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1987=1

   - SUSE Linux Enterprise Desktop 12-SP2:

      zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1987=1

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 x86_64):

      xen-debugsource-4.7.4_02-43.21.1
      xen-devel-4.7.4_02-43.21.1

   - SUSE Linux Enterprise Server 12-SP2 (x86_64):

      xen-4.7.4_02-43.21.1
      xen-debugsource-4.7.4_02-43.21.1
      xen-doc-html-4.7.4_02-43.21.1
      xen-libs-32bit-4.7.4_02-43.21.1
      xen-libs-4.7.4_02-43.21.1
      xen-libs-debuginfo-32bit-4.7.4_02-43.21.1
      xen-libs-debuginfo-4.7.4_02-43.21.1
      xen-tools-4.7.4_02-43.21.1
      xen-tools-debuginfo-4.7.4_02-43.21.1
      xen-tools-domU-4.7.4_02-43.21.1
      xen-tools-domU-debuginfo-4.7.4_02-43.21.1

   - SUSE Linux Enterprise Desktop 12-SP2 (x86_64):

      xen-4.7.4_02-43.21.1
      xen-debugsource-4.7.4_02-43.21.1
      xen-libs-32bit-4.7.4_02-43.21.1
      xen-libs-4.7.4_02-43.21.1
      xen-libs-debuginfo-32bit-4.7.4_02-43.21.1
      xen-libs-debuginfo-4.7.4_02-43.21.1


References:

   https://www.suse.com/security/cve/CVE-2017-15289.html
   https://www.suse.com/security/cve/CVE-2017-15597.html
   https://bugzilla.suse.com/1027519
   https://bugzilla.suse.com/1055047
   https://bugzilla.suse.com/1061075
   https://bugzilla.suse.com/1063123
   https://bugzilla.suse.com/1068187
   https://bugzilla.suse.com/1068191

SuSE: 2017:3178-1: important: xen

December 1, 2017
An update that solves two vulnerabilities and has four An update that solves two vulnerabilities and has four An update that solves two vulnerabilities and has four fixes is now av...

Summary

This update for xen to version 4.7.4 (bsc#1027519) fixes several issues. This new feature was added: - Support migration of HVM domains larger than 1 TB These security issues were fixed: - bsc#1068187: Failure to recognize errors in the Populate on Demand (PoD) code allowed for DoS (XSA-246) - bsc#1068191: Missing p2m error checking in PoD code allowed unprivileged guests to retain a writable mapping of freed memory leading to information leaks, privilege escalation or DoS (XSA-247). - CVE-2017-15289: The mode4and5 write functions allowed local OS guest privileged users to cause a denial of service (out-of-bounds write access and Qemu process crash) via vectors related to dst calculation (bsc#1063123) - CVE-2017-15597: A grant copy operation being done on a grant of a dying domain allowed a malicious guest administrator to corrupt hypervisor memory, allowing for DoS or potentially privilege escalation and information leaks (bsc#1061075). This non-security issue was fixed: - bsc#1055047: Fixed --initrd-inject option in virt-install Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP2: zypper in -t patch SUSE-SLE-SDK-12-SP2-2017-1987=1 - SUSE Linux Enterprise Server 12-SP2: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2017-1987=1 - SUSE Linux Enterprise Desktop 12-SP2: zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2017-1987=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 12-SP2 (aarch64 x86_64): xen-debugsource-4.7.4_02-43.21.1 xen-devel-4.7.4_02-43.21.1 - SUSE Linux Enterprise Server 12-SP2 (x86_64): xen-4.7.4_02-43.21.1 xen-debugsource-4.7.4_02-43.21.1 xen-doc-html-4.7.4_02-43.21.1 xen-libs-32bit-4.7.4_02-43.21.1 xen-libs-4.7.4_02-43.21.1 xen-libs-debuginfo-32bit-4.7.4_02-43.21.1 xen-libs-debuginfo-4.7.4_02-43.21.1 xen-tools-4.7.4_02-43.21.1 xen-tools-debuginfo-4.7.4_02-43.21.1 xen-tools-domU-4.7.4_02-43.21.1 xen-tools-domU-debuginfo-4.7.4_02-43.21.1 - SUSE Linux Enterprise Desktop 12-SP2 (x86_64): xen-4.7.4_02-43.21.1 xen-debugsource-4.7.4_02-43.21.1 xen-libs-32bit-4.7.4_02-43.21.1 xen-libs-4.7.4_02-43.21.1 xen-libs-debuginfo-32bit-4.7.4_02-43.21.1 xen-libs-debuginfo-4.7.4_02-43.21.1

References

#1027519 #1055047 #1061075 #1063123 #1068187

#1068191

Cross- CVE-2017-15289 CVE-2017-15597

Affected Products:

SUSE Linux Enterprise Software Development Kit 12-SP2

SUSE Linux Enterprise Server 12-SP2

SUSE Linux Enterprise Desktop 12-SP2

https://www.suse.com/security/cve/CVE-2017-15289.html

https://www.suse.com/security/cve/CVE-2017-15597.html

https://bugzilla.suse.com/1027519

https://bugzilla.suse.com/1055047

https://bugzilla.suse.com/1061075

https://bugzilla.suse.com/1063123

https://bugzilla.suse.com/1068187

https://bugzilla.suse.com/1068191

Severity
Announcement ID: SUSE-SU-2017:3178-1
Rating: important

Related News

Linux Mint 22: Elevating Security and Usability for Admins
3 - 5 min read
Linux Mint has has long been recognized as a versatile and user-friendly distribution and has earned great popularity among administrators and
Exim 4.98 Addresses Critical Vulnerabilities, Bolsters Email Server Security
2 - 4 min read
Exim is one of Unix-like systems' most widely used mail transfer agents. It's essential for email delivery and handling and is a significant part of
Recent OpenSSH RCE Bug Explained: Impact & Mitigations
2 - 4 min read
In an era where cybersecurity threats loom larger than ever, the discovery of a Remote Code Execution (RCE) vulnerability in OpenSSH by Qualys’
CVE-2024-4577: A Swiftly Weaponized Vulnerability for Ransomware Distribution
2 - 4 min read
Security researchers recently issued an update detailing how attackers are exploiting a PHP code execution vulnerability to spread TellYouThePass
Play Ransomware Group Unleashes New Threat on ESXi Environments: Analysis & Mitigation Strategies
3 - 5 min read
The Play ransomware group, well-known for its double-extortion tactics, recently unveiled a Linux variant targeting ESXi environments. This
Critical Linux Kernel Vulnerabilities Patched in Ubuntu Azure Systems
2 - 4 min read
Canonical has fixed several recently identified critical Linux kernel vulnerabilities in July 2024. These vulnerabilities primarily affect Microsoft
The Urgent Need for Secure Software Development: New Report Serves as a Wake-Up Call for the Industry
3 - 5 min read
The Linux Foundation and Open Source Security Foundation recently published a report entitled "Secure Software Development Education 2024
Severe Linux Kernel Privilege Escalation Bugs Could Compromise Entire Systems
2 - 4 min read
The Cybersecurity and Infrastructure Security Agency (CISA) recently added a new Linux kernel privilege escalation bug ( CVE-2024-1086 ) to its

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved