Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SUSE: 2024:2531-1 Important: Xen Security Updates For Threat Management

suse
Calendar Grey July 16, 2024
Dist Suse Esm H88
Critical security enhancement for xen addresses risks, delivering solutions and update guidelines for SUSE system users.
* bsc#1027519 * bsc#1214718 * bsc#1221984 * bsc#1225953 * bsc#1227355

Summary

## This update for xen fixes the following issues: * CVE-2023-46842: Fixed x86 HVM hypercalls may trigger Xen bug check (XSA-454, bsc#1221984). * CVE-2024-31143: Fixed double unlock in x86 guest IRQ handling (XSA-458, bsc#1227355).

Topics%20covered

Topics Covered

security advisory update information important SUSE threat management xen patch instructions

References

* bsc#1027519

* bsc#1214718

* bsc#1221984

* bsc#1225953

* bsc#1227355

Cross-

* CVE-2023-46842

* CVE-2024-31143

CVSS scores:

* CVE-2023-46842 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

* CVE-2024-31143 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products:

* Basesystem Module 15-SP6

* openSUSE Leap 15.6

* Server Applications Module 15-SP6

* SUSE Linux Enterprise Desktop 15 SP6

* SUSE Linux Enterprise Real Time 15 SP6

* SUSE Linux Enterprise Server 15 SP6

* SUSE Linux Enterprise Server for SAP Applications 15 SP6

An update that solves two vulnerabilities and has three security fixes can now

be installed.

##

* https://www.suse.com/security/cve/CVE-2023-46842.html

* https://www.suse.com/security/cve/CVE-2024-31143.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2024:2531-1
Rating: important

Topics%20covered

Topics Covered

security advisory update information important SUSE threat management xen patch instructions

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here