[openSUSE-SU-2020:0818-1] Security update for xen
Severity
Important
Affected Packages
10
CVEs
1
Security update for xen
This update for xen to version 4.12.3 fixes the following issues:
- CVE-2020-0543: Fixed a side channel attack against special registers which could have resulted in leaking of read values to cores other than the one which called it. This attack is known as Special Register Buffer Data Sampling (SRBDS) or 'CrossTalk' (bsc#1172205).
- Added support for new 64bit libxl memory API (bsc#1167007 and bsc#1157490).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
Package | Affected Version |
---|---|
pkg:rpm/opensuse/xen?arch=x86_64&distro=opensuse-leap-15.1 | < 4.12.3_02-lp151.2.18.2 |
pkg:rpm/opensuse/xen-tools?arch=x86_64&distro=opensuse-leap-15.1 | < 4.12.3_02-lp151.2.18.2 |
pkg:rpm/opensuse/xen-tools-domU?arch=x86_64&distro=opensuse-leap-15.1 | < 4.12.3_02-lp151.2.18.2 |
pkg:rpm/opensuse/xen-tools-domU?arch=i586&distro=opensuse-leap-15.1 | < 4.12.3_02-lp151.2.18.2 |
pkg:rpm/opensuse/xen-libs?arch=x86_64&distro=opensuse-leap-15.1 | < 4.12.3_02-lp151.2.18.2 |
pkg:rpm/opensuse/xen-libs?arch=i586&distro=opensuse-leap-15.1 | < 4.12.3_02-lp151.2.18.2 |
pkg:rpm/opensuse/xen-libs-32bit?arch=x86_64&distro=opensuse-leap-15.1 | < 4.12.3_02-lp151.2.18.2 |
pkg:rpm/opensuse/xen-doc-html?arch=x86_64&distro=opensuse-leap-15.1 | < 4.12.3_02-lp151.2.18.2 |
pkg:rpm/opensuse/xen-devel?arch=x86_64&distro=opensuse-leap-15.1 | < 4.12.3_02-lp151.2.18.2 |
pkg:rpm/opensuse/xen-devel?arch=i586&distro=opensuse-leap-15.1 | < 4.12.3_02-lp151.2.18.2 |
- ID
- openSUSE-SU-2020:0818-1
- Severity
- important
- URL
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GRJJ64XQBFNSNFR6IVUVZQQYKIPTZY7K/
- Published
-
2020-06-14T16:26:57
(4 years ago) - Modified
-
2020-06-14T16:26:57
(4 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2020-1396
- ALAS-2020-1401
- ALAS2-2020-1444
- ALAS2-2020-1465
- ALPINE:CVE-2020-0543
- ALSA-2021:3027
- ASA-202006-10
- DSA-4698-1
- DSA-4699-1
- DSA-4701-1
- ELSA-2020-2431
- ELSA-2020-2432
- ELSA-2020-2433
- ELSA-2020-5714
- ELSA-2020-5715
- ELSA-2020-5722
- ELSA-2020-5732
- ELSA-2020-5750
- ELSA-2020-5755
- ELSA-2020-5756
- ELSA-2021-3027
- ELSA-2021-3028
- FEDORA-2020-11ddbfbdf0
- FEDORA-2020-1afbe7ba2d
- FEDORA-2020-3364913ace
- FEDORA-2020-e47d28bc2b
- FEDORA-2020-e8835a5f8e
- FREEBSD:FBCBA194-AC7D-11EA-8B5E-B42E99A1B9C3
- openSUSE-SU-2020:0791-1
- openSUSE-SU-2020:0801-1
- openSUSE-SU-2020:0965-1
- openSUSE-SU-2020:0985-1
- openSUSE-SU-2021:0242-1
- RHSA-2020:2431
- RHSA-2020:2432
- RHSA-2020:2433
- RHSA-2021:3027
- RHSA-2021:3028
- SSA:2020-163-01
- SUSE-SU-2020:1587-1
- SUSE-SU-2020:1589-1
- SUSE-SU-2020:1595-1
- SUSE-SU-2020:1596-1
- SUSE-SU-2020:1597-1
- SUSE-SU-2020:1599-1
- SUSE-SU-2020:1600-1
- SUSE-SU-2020:1601-1
- SUSE-SU-2020:1602-1
- SUSE-SU-2020:1603-1
- SUSE-SU-2020:1604-1
- SUSE-SU-2020:1605-1
- SUSE-SU-2020:1609-1
- SUSE-SU-2020:1630-1
- SUSE-SU-2020:1632-1
- SUSE-SU-2020:1633-1
- SUSE-SU-2020:1634-1
- SUSE-SU-2020:1663-1
- SUSE-SU-2020:1887-1
- SUSE-SU-2020:1889-1
- SUSE-SU-2020:1902-1
- SUSE-SU-2020:2156-1
- SUSE-SU-2020:2478-1
- SUSE-SU-2020:2487-1
- SUSE-SU-2020:2822-1
- SUSE-SU-2021:1497-1
- USN-4385-1
- USN-4387-1
- USN-4388-1
- USN-4389-1
- USN-4390-1
- USN-4391-1
- USN-4392-1
- USN-4393-1
- USN-5617-1
- XSA-320
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_0818-1.json | |
Suse | URL for openSUSE-SU-2020:0818-1 | https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GRJJ64XQBFNSNFR6IVUVZQQYKIPTZY7K/ | |
Suse | E-Mail link for openSUSE-SU-2020:0818-1 | https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GRJJ64XQBFNSNFR6IVUVZQQYKIPTZY7K/ | |
Bugzilla | SUSE Bug 1027519 | https://bugzilla.suse.com/1027519 | |
Bugzilla | SUSE Bug 1157490 | https://bugzilla.suse.com/1157490 | |
Bugzilla | SUSE Bug 1167007 | https://bugzilla.suse.com/1167007 | |
Bugzilla | SUSE Bug 1172205 | https://bugzilla.suse.com/1172205 | |
CVE | SUSE CVE CVE-2020-0543 page | https://www.suse.com/security/cve/CVE-2020-0543/ |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/opensuse/xen?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | xen | < 4.12.3_02-lp151.2.18.2 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/xen-tools?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | xen-tools | < 4.12.3_02-lp151.2.18.2 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/xen-tools-domU?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | xen-tools-domU | < 4.12.3_02-lp151.2.18.2 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/xen-tools-domU?arch=i586&distro=opensuse-leap-15.1 | opensuse | xen-tools-domU | < 4.12.3_02-lp151.2.18.2 | opensuse-leap-15.1 | i586 | |
Affected | pkg:rpm/opensuse/xen-libs?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | xen-libs | < 4.12.3_02-lp151.2.18.2 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/xen-libs?arch=i586&distro=opensuse-leap-15.1 | opensuse | xen-libs | < 4.12.3_02-lp151.2.18.2 | opensuse-leap-15.1 | i586 | |
Affected | pkg:rpm/opensuse/xen-libs-32bit?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | xen-libs-32bit | < 4.12.3_02-lp151.2.18.2 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/xen-doc-html?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | xen-doc-html | < 4.12.3_02-lp151.2.18.2 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/xen-devel?arch=x86_64&distro=opensuse-leap-15.1 | opensuse | xen-devel | < 4.12.3_02-lp151.2.18.2 | opensuse-leap-15.1 | x86_64 | |
Affected | pkg:rpm/opensuse/xen-devel?arch=i586&distro=opensuse-leap-15.1 | opensuse | xen-devel | < 4.12.3_02-lp151.2.18.2 | opensuse-leap-15.1 | i586 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |