Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
202
security advisorymoderatesoftware updateopenSUSE 42.3: 2018:2306-1 Moderate: Libvirt Memory Disambiguation Fix
An update that solves one vulnerability and has 9 fixes is now available.. openSUSE Security Update: Security update for libvirt ______________________________________________________________________________ Announcement ID: openSUSE-SU-2018:2306-1 Rating: moderate References: #1074014 #1076861 #1079150 #1087416 #1092885 #1094325 #1094480 #1094725 #1095556 #959329 Cross-References: CVE-2018-3639 Affected Products: openSUSE Leap 42.3 ______________________________________________________________________________ An update that solves one vulnerability and has 9 fixes is now available. Description: This update for libvirt fixes the following issues: Security issue fixed: - CVE-2018-3639: Add support for 'ssbd' and 'virt-ssbd' CPUID feature bits to address V4 Speculative Store Bypass aka "Memory Disambiguation" (bsc#1092885). Bug fixes: - bsc#1094325: Enable virsh blockresize for XEN guests (FATE#325467). - bsc#1095556: Fix qemu VM creating with --boot uefi due to missing AppArmor profile. - bsc#1094725: Fix `virsh blockresize` to work with Xen qdisks. - bsc#1094480: Fix `virsh list` to list domains with `xl list`. - bsc#1087416: Fix missing video device within guest with default installation by virt-mamanger. - bsc#1079150: Fix libvirt-guests start dependency. - bsc#1076861: Fix locking of lockspace resource '/devcfs/disks/uatidmsvn1-xvda'. - bsc#1074014: Fix KVM live migration when shutting down cluster node. - bsc#959329: Fix wrong state of VMs in virtual manager. This update was imported from the SUSE:SLE-12-SP3:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 42.3: zypper in -t patch openSUSE-2018-860=1 PackageList: - openSUSE Leap 42.3 (i586 x86_64): libvirt-3.3.0-18.1 libvirt-admin-3.3.0-18.1 libvirt-admin-debuginfo-3.3.0-18.1 libvirt-client-3.3.0-18.1 libvirt-client-debuginfo-3.3.0-18.1 libvirt-daemon-3.3.0-18.1 libvirt-daemon-config-network-3.3.0-18.1 libvirt-daemon-config-nwfilter-3.3.0-18.1 libvirt-daemon-debuginfo-3.3.0-18.1 libvirt-daemon-driver-interface-3.3.0-18.1 libvirt-daemon-driver-interface-debuginfo-3.3.0-18.1 libvirt-daemon-driver-lxc-3.3.0-18.1 libvirt-daemon-driver-lxc-debuginfo-3.3.0-18.1 libvirt-daemon-driver-network-3.3.0-18.1 libvirt-daemon-driver-network-debuginfo-3.3.0-18.1 libvirt-daemon-driver-nodedev-3.3.0-18.1 libvirt-daemon-driver-nodedev-debuginfo-3.3.0-18.1 libvirt-daemon-driver-nwfilter-3.3.0-18.1 libvirt-daemon-driver-nwfilter-debuginfo-3.3.0-18.1 libvirt-daemon-driver-qemu-3.3.0-18.1 libvirt-daemon-driver-qemu-debuginfo-3.3.0-18.1 libvirt-daemon-driver-secret-3.3.0-18.1 libvirt-daemon-driver-secret-debuginfo-3.3.0-18.1 libvirt-daemon-driver-storage-3.3.0-18.1 libvirt-daemon-driver-storage-core-3.3.0-18.1 libvirt-daemon-driver-storage-core-debuginfo-3.3.0-18.1 libvirt-daemon-driver-storage-disk-3.3.0-18.1 libvirt-daemon-driver-storage-disk-debuginfo-3.3.0-18.1 libvirt-daemon-driver-storage-iscsi-3.3.0-18.1 libvirt-daemon-driver-storage-iscsi-debuginfo-3.3.0-18.1 libvirt-daemon-driver-storage-logical-3.3.0-18.1 libvirt-daemon-driver-storage-logical-debuginfo-3.3.0-18.1 libvirt-daemon-driver-storage-mpath-3.3.0-18.1 libvirt-daemon-driver-storage-mpath-debuginfo-3.3.0-18.1 libvirt-daemon-driver-storage-scsi-3.3.0-18.1 libvirt-daemon-driver-storage-scsi-debuginfo-3.3.0-18.1 libvirt-daemon-driver-uml-3.3.0-18.1 libvirt-daemon-driver-uml-debuginfo-3.3.0-18.1 libvirt-daemon-driver-vbox-3.3.0-18.1 libvirt-daemon-driver-vbox-debuginfo-3.3.0-18.1 libvirt-daemon-hooks-3.3.0-18.1 libvirt-daemon-lxc-3.3.0-18.1 libvirt-daemon-qemu-3.3.0-18.1 libvirt-daemon-uml-3.3.0-18.1 libvirt-daemon-vbox-3.3.0-18.1 libvirt-debugsource-3.3.0-18.1 libvirt-devel-3.3.0-18.1 libvirt-doc-3.3.0-18.1 libvirt-libs-3.3.0-18.1 libvirt-libs-debuginfo-3.3.0-18.1 libvirt-lock-sanlock-3.3.0-18.1 libvirt-lock-sanlock-debuginfo-3.3.0-18.1 libvirt-nss-3.3.0-18.1 libvirt-nss-debuginfo-3.3.0-18.1 - openSUSE Leap 42.3 (x86_64): libvirt-client-debuginfo-32bit-3.3.0-18.1 libvirt-daemon-driver-libxl-3.3.0-18.1 libvirt-daemon-driver-libxl-debuginfo-3.3.0-18.1 libvirt-daemon-driver-storage-rbd-3.3.0-18.1 libvirt-daemon-driver-storage-rbd-debuginfo-3.3.0-18.1 libvirt-daemon-xen-3.3.0-18.1 libvirt-devel-32bit-3.3.0-18.1 References: https://www.suse.com/security/cve/CVE-2018-3639.html https://bugzilla.suse.com/1074014 https://bugzilla.suse.com/1076861 https://bugzilla.suse.com/1079150 https://bugzilla.suse.com/1087416 https://bugzilla.suse.com/1092885 https://bugzilla.suse.com/1094325 https://bugzilla.suse.com/1094480 https://bugzilla.suse.com/1094725 https://bugzilla.suse.com/1095556 https://bugzilla.suse.com/959329 -- . openSUSE Security Update: Security update for libvirt Announcement ID: openSUSE-SU-2018:2306-1 Ratin. update, solves, vulnerability, fixes, opensuse, security. . LinuxSecurity.com Team
Aug 13, 2018
OpenSUSE
100
security advisorymoderatesoftware updateSUSE Linux Enterprise 12-SP3: Update SUSE-SU-2018:2304-1 for libvirt Fix
An update that solves one vulnerability and has 9 fixes is now available. . SUSE Security Update: Security update for libvirt ______________________________________________________________________________ Announcement ID: SUSE-SU-2018:2304-1 Rating: moderate References: #1074014 #1076861 #1079150 #1087416 #1092885 #1094325 #1094480 #1094725 #1095556 #959329 Cross-References: CVE-2018-3639 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Desktop 12-SP3 ______________________________________________________________________________ An update that solves one vulnerability and has 9 fixes is now available. Description: This update for libvirt fixes the following issues: Security issue fixed: - CVE-2018-3639: Add support for 'ssbd' and 'virt-ssbd' CPUID feature bits to address V4 Speculative Store Bypass aka "Memory Disambiguation" (bsc#1092885). Bug fixes: - bsc#1094325: Enable virsh blockresize for XEN guests (FATE#325467). - bsc#1095556: Fix qemu VM creating with --boot uefi due to missing AppArmor profile. - bsc#1094725: Fix `virsh blockresize` to work with Xen qdisks. - bsc#1094480: Fix `virsh list` to list domains with `xl list`. - bsc#1087416: Fix missing video device within guest with default installation by virt-mamanger. - bsc#1079150: Fix libvirt-guests start dependency. - bsc#1076861: Fix locking of lockspace resource '/devcfs/disks/uatidmsvn1-xvda'. - bsc#1074014: Fix KVM live migration when shutting down cluster node. - bsc#959329: Fix wrong state of VMs in virtual manager. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE LinuxEnterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2018-1545=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2018-1545=1 - SUSE Linux Enterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2018-1545=1 Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): libvirt-debugsource-3.3.0-5.22.1 libvirt-devel-3.3.0-5.22.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 ppc64le s390x x86_64): libvirt-3.3.0-5.22.1 libvirt-admin-3.3.0-5.22.1 libvirt-admin-debuginfo-3.3.0-5.22.1 libvirt-client-3.3.0-5.22.1 libvirt-client-debuginfo-3.3.0-5.22.1 libvirt-daemon-3.3.0-5.22.1 libvirt-daemon-config-network-3.3.0-5.22.1 libvirt-daemon-config-nwfilter-3.3.0-5.22.1 libvirt-daemon-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-interface-3.3.0-5.22.1 libvirt-daemon-driver-interface-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-lxc-3.3.0-5.22.1 libvirt-daemon-driver-lxc-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-network-3.3.0-5.22.1 libvirt-daemon-driver-network-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-nodedev-3.3.0-5.22.1 libvirt-daemon-driver-nodedev-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-nwfilter-3.3.0-5.22.1 libvirt-daemon-driver-nwfilter-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-qemu-3.3.0-5.22.1 libvirt-daemon-driver-qemu-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-secret-3.3.0-5.22.1 libvirt-daemon-driver-secret-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-3.3.0-5.22.1 libvirt-daemon-driver-storage-core-3.3.0-5.22.1 libvirt-daemon-driver-storage-core-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-disk-3.3.0-5.22.1 libvirt-daemon-driver-storage-disk-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-iscsi-3.3.0-5.22.1 libvirt-daemon-driver-storage-iscsi-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-logical-3.3.0-5.22.1 libvirt-daemon-driver-storage-logical-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-mpath-3.3.0-5.22.1 libvirt-daemon-driver-storage-mpath-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-scsi-3.3.0-5.22.1 libvirt-daemon-driver-storage-scsi-debuginfo-3.3.0-5.22.1 libvirt-daemon-hooks-3.3.0-5.22.1 libvirt-daemon-lxc-3.3.0-5.22.1 libvirt-daemon-qemu-3.3.0-5.22.1 libvirt-debugsource-3.3.0-5.22.1 libvirt-doc-3.3.0-5.22.1 libvirt-libs-3.3.0-5.22.1 libvirt-libs-debuginfo-3.3.0-5.22.1 libvirt-lock-sanlock-3.3.0-5.22.1 libvirt-lock-sanlock-debuginfo-3.3.0-5.22.1 libvirt-nss-3.3.0-5.22.1 libvirt-nss-debuginfo-3.3.0-5.22.1 - SUSE Linux Enterprise Server 12-SP3 (aarch64 x86_64): libvirt-daemon-driver-storage-rbd-3.3.0-5.22.1 libvirt-daemon-driver-storage-rbd-debuginfo-3.3.0-5.22.1 - SUSE Linux Enterprise Server 12-SP3 (x86_64): libvirt-daemon-driver-libxl-3.3.0-5.22.1 libvirt-daemon-driver-libxl-debuginfo-3.3.0-5.22.1 libvirt-daemon-xen-3.3.0-5.22.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): libvirt-3.3.0-5.22.1 libvirt-admin-3.3.0-5.22.1 libvirt-admin-debuginfo-3.3.0-5.22.1 libvirt-client-3.3.0-5.22.1 libvirt-client-debuginfo-3.3.0-5.22.1 libvirt-daemon-3.3.0-5.22.1 libvirt-daemon-config-network-3.3.0-5.22.1 libvirt-daemon-config-nwfilter-3.3.0-5.22.1 libvirt-daemon-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-interface-3.3.0-5.22.1 libvirt-daemon-driver-interface-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-libxl-3.3.0-5.22.1 libvirt-daemon-driver-libxl-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-lxc-3.3.0-5.22.1 libvirt-daemon-driver-lxc-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-network-3.3.0-5.22.1 libvirt-daemon-driver-network-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-nodedev-3.3.0-5.22.1 libvirt-daemon-driver-nodedev-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-nwfilter-3.3.0-5.22.1 libvirt-daemon-driver-nwfilter-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-qemu-3.3.0-5.22.1 libvirt-daemon-driver-qemu-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-secret-3.3.0-5.22.1 libvirt-daemon-driver-secret-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-3.3.0-5.22.1 libvirt-daemon-driver-storage-core-3.3.0-5.22.1 libvirt-daemon-driver-storage-core-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-disk-3.3.0-5.22.1 libvirt-daemon-driver-storage-disk-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-iscsi-3.3.0-5.22.1 libvirt-daemon-driver-storage-iscsi-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-logical-3.3.0-5.22.1 libvirt-daemon-driver-storage-logical-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-mpath-3.3.0-5.22.1 libvirt-daemon-driver-storage-mpath-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-rbd-3.3.0-5.22.1 libvirt-daemon-driver-storage-rbd-debuginfo-3.3.0-5.22.1 libvirt-daemon-driver-storage-scsi-3.3.0-5.22.1 libvirt-daemon-driver-storage-scsi-debuginfo-3.3.0-5.22.1 libvirt-daemon-lxc-3.3.0-5.22.1 libvirt-daemon-qemu-3.3.0-5.22.1 libvirt-daemon-xen-3.3.0-5.22.1 libvirt-debugsource-3.3.0-5.22.1 libvirt-doc-3.3.0-5.22.1 libvirt-libs-3.3.0-5.22.1 libvirt-libs-debuginfo-3.3.0-5.22.1 References: https://www.suse.com/security/cve/CVE-2018-3639.html https://bugzilla.suse.com/1074014 https://bugzilla.suse.com/1076861 https://bugzilla.suse.com/1079150 https://bugzilla.suse.com/1087416 https://bugzilla.suse.com/1092885 https://bugzilla.suse.com/1094325 https://bugzilla.suse.com/1094480 https://bugzilla.suse.com/1094725 https://bugzilla.suse.com/1095556 https://bugzilla.suse.com/959329 . The recent update for libvirt addresses a significant security vulnerability alongside nine other important fixes specifically for SUSE users. Ensure you stay updated!. libvirt security update, SUSE advisory, software fixes. . LinuxSecurity.com Team
Aug 11, 2018
SuSE
100
security advisorydenial of serviceimportantSUSE: 2018:2141-1 Important: Libvirt Denial of Service Fix
An update that solves 5 vulnerabilities and has 7 fixes is now available. . SUSE Security Update: Security update for libvirt ______________________________________________________________________________ Announcement ID: SUSE-SU-2018:2141-1 Rating: important References: #1076500 #1079869 #1083625 #1092885 #854343 #897352 #954872 #956298 #964465 #968483 #980558 #987527 Cross-References: CVE-2016-5008 CVE-2017-5715 CVE-2018-1064 CVE-2018-3639 CVE-2018-5748 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________ An update that solves 5 vulnerabilities and has 7 fixes is now available. Description: This update for libvirt fixes the following issues: Security issues fixed: - CVE-2018-3639: Add support for 'ssbd' and 'virt-ssbd' CPUID feature bits to address V4 Speculative Store Bypass aka "Memory Disambiguation" (bsc#1092885). - CVE-2018-1064: Fix denial of service problem during reading from guest agent (bsc#1083625). - CVE-2018-5748: Fix resource exhaustion via qemuMonitorIORead() method (bsc#1076500). - CVE-2016-5008: Fix that an empty VNC password disables authentication (bsc#987527). - CVE-2017-5715: Fix speculative side channel attacks aka "SpectreAttack" (var2) (bsc#1079869). Bug fixes: - bsc#980558: Fix NUMA node memory allocation. - bsc#968483: Restart daemons in %posttrans after connection drivers. - bsc#897352: Systemd fails to ignore LSB services. - bsc#956298: virsh domxml-to-native causes segfault of libvirtd. - bsc#964465: libvirtd.service causes systemd warning about xencommons service. - bsc#954872: Script block-dmmd not working as expected. - bsc#854343: libvirt installation run inappropriate systemd restart. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-2018-1455=1 Package List: - SUSE Linux Enterprise Server 12-LTSS (ppc64le s390x x86_64): libvirt-1.2.5-27.13.1 libvirt-client-1.2.5-27.13.1 libvirt-client-debuginfo-1.2.5-27.13.1 libvirt-daemon-1.2.5-27.13.1 libvirt-daemon-config-network-1.2.5-27.13.1 libvirt-daemon-config-nwfilter-1.2.5-27.13.1 libvirt-daemon-debuginfo-1.2.5-27.13.1 libvirt-daemon-driver-interface-1.2.5-27.13.1 libvirt-daemon-driver-interface-debuginfo-1.2.5-27.13.1 libvirt-daemon-driver-lxc-1.2.5-27.13.1 libvirt-daemon-driver-lxc-debuginfo-1.2.5-27.13.1 libvirt-daemon-driver-network-1.2.5-27.13.1 libvirt-daemon-driver-network-debuginfo-1.2.5-27.13.1 libvirt-daemon-driver-nodedev-1.2.5-27.13.1 libvirt-daemon-driver-nodedev-debuginfo-1.2.5-27.13.1 libvirt-daemon-driver-nwfilter-1.2.5-27.13.1 libvirt-daemon-driver-nwfilter-debuginfo-1.2.5-27.13.1 libvirt-daemon-driver-qemu-1.2.5-27.13.1 libvirt-daemon-driver-qemu-debuginfo-1.2.5-27.13.1 libvirt-daemon-driver-secret-1.2.5-27.13.1 libvirt-daemon-driver-secret-debuginfo-1.2.5-27.13.1 libvirt-daemon-driver-storage-1.2.5-27.13.1 libvirt-daemon-driver-storage-debuginfo-1.2.5-27.13.1 libvirt-daemon-lxc-1.2.5-27.13.1 libvirt-daemon-qemu-1.2.5-27.13.1 libvirt-debugsource-1.2.5-27.13.1 libvirt-doc-1.2.5-27.13.1 libvirt-lock-sanlock-1.2.5-27.13.1 libvirt-lock-sanlock-debuginfo-1.2.5-27.13.1 - SUSE Linux Enterprise Server 12-LTSS (x86_64): libvirt-daemon-driver-libxl-1.2.5-27.13.1 libvirt-daemon-driver-libxl-debuginfo-1.2.5-27.13.1 libvirt-daemon-xen-1.2.5-27.13.1 References: https://www.suse.com/security/cve/CVE-2016-5008.html https://www.suse.com/security/cve/CVE-2017-5715.html https://www.suse.com/security/cve/CVE-2018-1064.html https://www.suse.com/security/cve/CVE-2018-3639.html https://www.suse.com/security/cve/CVE-2018-5748.html https://bugzilla.suse.com/1076500 https://bugzilla.suse.com/1079869 https://bugzilla.suse.com/1083625 https://bugzilla.suse.com/1092885 https://bugzilla.suse.com/854343 https://bugzilla.suse.com/897352 https://bugzilla.suse.com/954872 https://bugzilla.suse.com/956298 https://bugzilla.suse.com/964465 https://bugzilla.suse.com/968483 https://bugzilla.suse.com/980558 https://bugzilla.suse.com/987527 . SUSE has released a security update for Libvirt addressing five vulnerabilities, which include risks related to denial of service and resource exhaustion.. libvirt update, SUSE security, Linux vulnerabilities, important security advisory. . Severity: Important. LinuxSecurity.com Team
Jul 31, 2018
•Important
SuSE
100
security advisorypatchimportantSUSE Linux: 2018:1456-1 Important: Xen Memory Disambiguation Update
An update that solves three vulnerabilities and has three fixes is now available. . SUSE Security Update: Security update for xen ______________________________________________________________________________ Announcement ID: SUSE-SU-2018:1456-1 Rating: important References: #1027519 #1074562 #1090296 #1090822 #1090823 #1092631 Cross-References: CVE-2018-10981 CVE-2018-10982 CVE-2018-3639 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Desktop 12-SP3 SUSE CaaS Platform ALL ______________________________________________________________________________ An update that solves three vulnerabilities and has three fixes is now available. Description: This update for xen fixes the following issues: Security issues fixed: - CVE-2018-3639: Spectre V4 ??? Speculative Store Bypass aka "Memory Disambiguation" (bsc#1092631) This feature can be controlled by the "ssbd=on/off" commandline flag for the XEN hypervisor. - CVE-2018-10982: x86 vHPET interrupt injection errors (XSA-261 bsc#1090822) - CVE-2018-10981: qemu may drive Xen into unbounded loop (XSA-262 bsc#1090823) Other bugfixes: - Upstream patches from Jan (bsc#1027519) - additional fixes related to Page Table Isolation (XPTI). (bsc#1074562 XSA-254) - qemu-system-i386 cannot handle more than 4 HW NICs (bsc#1090296) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2018-996=1 - SUSE Linux Enterprise Server 12-SP3: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2018-996=1 - SUSE LinuxEnterprise Desktop 12-SP3: zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2018-996=1 - SUSE CaaS Platform ALL: To install this update, use the SUSE CaaS Platform Velum dashboard. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. Package List: - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 x86_64): xen-debugsource-4.9.2_06-3.32.1 xen-devel-4.9.2_06-3.32.1 - SUSE Linux Enterprise Server 12-SP3 (x86_64): xen-4.9.2_06-3.32.1 xen-debugsource-4.9.2_06-3.32.1 xen-doc-html-4.9.2_06-3.32.1 xen-libs-32bit-4.9.2_06-3.32.1 xen-libs-4.9.2_06-3.32.1 xen-libs-debuginfo-32bit-4.9.2_06-3.32.1 xen-libs-debuginfo-4.9.2_06-3.32.1 xen-tools-4.9.2_06-3.32.1 xen-tools-debuginfo-4.9.2_06-3.32.1 xen-tools-domU-4.9.2_06-3.32.1 xen-tools-domU-debuginfo-4.9.2_06-3.32.1 - SUSE Linux Enterprise Desktop 12-SP3 (x86_64): xen-4.9.2_06-3.32.1 xen-debugsource-4.9.2_06-3.32.1 xen-libs-32bit-4.9.2_06-3.32.1 xen-libs-4.9.2_06-3.32.1 xen-libs-debuginfo-32bit-4.9.2_06-3.32.1 xen-libs-debuginfo-4.9.2_06-3.32.1 - SUSE CaaS Platform ALL (x86_64): xen-debugsource-4.9.2_06-3.32.1 xen-libs-4.9.2_06-3.32.1 xen-libs-debuginfo-4.9.2_06-3.32.1 xen-tools-domU-4.9.2_06-3.32.1 xen-tools-domU-debuginfo-4.9.2_06-3.32.1 References: https://www.suse.com/security/cve/CVE-2018-10981.html https://www.suse.com/security/cve/CVE-2018-10982.html https://www.suse.com/security/cve/CVE-2018-3639.html https://bugzilla.suse.com/1027519 https://bugzilla.suse.com/1074562 https://bugzilla.suse.com/1090296 https://bugzilla.suse.com/1090822 https://bugzilla.suse.com/1090823 https://bugzilla.suse.com/1092631 . Important SUSE Security Patch for xen tackling three vulnerabilities with solutions. Ensure your systems are protected with the newest updates.. SUSE Security, XenUpdate, Important Patches, Speculative Store Bypass. . Severity: Important. LinuxSecurity.com Team
May 29, 2018
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!