[SUSE-SU-2018:0039-1] Security update for kvm
Severity
Important
Affected Packages
3
CVEs
2
Security update for kvm
This update for kvm fixes the following issues:
A security flaw mitigation has been applied:
- CVE-2017-5715: QEMU was updated to allow passing through new MSR and CPUID flags from the host VM to the CPU, to allow enabling/disabling branch prediction features in the Intel CPU. (bsc#1068032)
Also a security fix has been applied:
- CVE-2017-2633: Fix various out of bounds access issues in the QEMU vnc infrastructure (bsc#1026612)
| Package | Affected Version |
|---|---|
 pkg:rpm/suse/kvm?arch=x86_64&distro=sles-11&sp=3
|
< 1.4.2-53.14.1 |
|
pkg:rpm/suse/kvm?arch=s390x&distro=sles-11&sp=3
|
< 1.4.2-53.14.1 |
|
pkg:rpm/suse/kvm?arch=i586&distro=sles-11&sp=3
|
< 1.4.2-53.14.1 |
- ID
- SUSE-SU-2018:0039-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2018/suse-su-20180039-1/
- Published
-
2018-01-08T12:27:20
(6 years ago) - Modified
-
2018-01-08T12:27:20
(6 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS-2018-939
-
ALAS-2018-942
-
ALAS2-2018-939
-
ALAS2-2018-942
-
ALAS2-2018-952
-
ALAS2-2018-953
-
ALAS2-2018-962
-
ALPINE:CVE-2017-5715
-
ASA-201801-10
-
CISCO-SA-20180104-CPUSIDECHANNEL
-
DSA-4187-1
-
DSA-4188-1
-
DSA-4201-1
-
DSA-4213-1
-
ELSA-2017-1206
-
ELSA-2017-1856
-
ELSA-2018-0007
-
ELSA-2018-0008
-
ELSA-2018-0012
-
ELSA-2018-0013
-
ELSA-2018-0023
-
ELSA-2018-0024
-
ELSA-2018-0029
-
ELSA-2018-0030
-
ELSA-2018-1196
-
ELSA-2018-4004
-
ELSA-2018-4020
-
ELSA-2018-4022
-
ELSA-2018-4262
-
ELSA-2018-4285
-
ELSA-2018-4289
-
ELSA-2019-4585
-
ELSA-2019-4668
-
ELSA-2019-4710
-
ELSA-2019-4785
-
FEDORA-2018-0590e4af13
-
FEDORA-2018-2b053454a4
-
FEDORA-2018-690989736a
-
FEDORA-2018-6c1be5e1c8
-
FEDORA-2018-9f02e5ed7b
-
FREEBSD:1CE95BC7-3278-11E8-B527-00012E582166
-
FREEBSD:74DAA370-2797-11E8-95EC-A4BADB2F4699
-
FREEBSD:FBE10A8A-05A1-11EA-9DFA-F8B156AC3FF9
-
GLSA-201804-08
-
GLSA-201810-06
-
RHBA-2018:0042
-
RHSA-2017:1206
-
RHSA-2017:1856
-
RHSA-2018:0016
-
RHSA-2018:0023
-
RHSA-2018:1062
-
RHSA-2018:1319
-
SSA:2018-016-01
-
SSA:2018-037-01
-
SUSE-SU-2017:1080-1
-
SUSE-SU-2017:1081-1
-
SUSE-SU-2017:1147-1
-
SUSE-SU-2017:2969-1
-
SUSE-SU-2018:0007-1
-
SUSE-SU-2018:0008-1
-
SUSE-SU-2018:0010-1
-
SUSE-SU-2018:0011-1
-
SUSE-SU-2018:0012-1
-
SUSE-SU-2018:0019-1
-
SUSE-SU-2018:0020-1
-
SUSE-SU-2018:0031-1
-
SUSE-SU-2018:0036-1
-
SUSE-SU-2018:0040-1
-
SUSE-SU-2018:0041-1
-
SUSE-SU-2018:0051-1
-
SUSE-SU-2018:0056-1
-
SUSE-SU-2018:0068-1
-
SUSE-SU-2018:0069-1
-
SUSE-SU-2018:0113-1
-
SUSE-SU-2018:0114-1
-
SUSE-SU-2018:0115-1
-
SUSE-SU-2018:0131-1
-
SUSE-SU-2018:0171-1
-
SUSE-SU-2018:0180-1
-
SUSE-SU-2018:0213-1
-
SUSE-SU-2018:0219-1
-
SUSE-SU-2018:0285-1
-
SUSE-SU-2018:0383-1
-
SUSE-SU-2018:0416-1
-
SUSE-SU-2018:0437-1
-
SUSE-SU-2018:0438-1
-
SUSE-SU-2018:0472-1
-
SUSE-SU-2018:0482-1
-
SUSE-SU-2018:0525-1
-
SUSE-SU-2018:0552-1
-
SUSE-SU-2018:0552-2
-
SUSE-SU-2018:0555-1
-
SUSE-SU-2018:0601-1
-
SUSE-SU-2018:0609-1
-
SUSE-SU-2018:0638-1
-
SUSE-SU-2018:0660-1
-
SUSE-SU-2018:0678-1
-
SUSE-SU-2018:0705-1
-
SUSE-SU-2018:0708-1
-
SUSE-SU-2018:0757-1
-
SUSE-SU-2018:0762-1
-
SUSE-SU-2018:0831-1
-
SUSE-SU-2018:0838-1
-
SUSE-SU-2018:0841-1
-
SUSE-SU-2018:0861-1
-
SUSE-SU-2018:0909-1
-
SUSE-SU-2018:0920-1
-
SUSE-SU-2018:0986-1
-
SUSE-SU-2018:1077-1
-
SUSE-SU-2018:1080-1
-
SUSE-SU-2018:1295-1
-
SUSE-SU-2018:1308-1
-
SUSE-SU-2018:1363-1
-
SUSE-SU-2018:1368-1
-
SUSE-SU-2018:1376-1
-
SUSE-SU-2018:1386-1
-
SUSE-SU-2018:1465-1
-
SUSE-SU-2018:1486-1
-
SUSE-SU-2018:1498-1
-
SUSE-SU-2018:1503-1
-
SUSE-SU-2018:1567-1
-
SUSE-SU-2018:1570-1
-
SUSE-SU-2018:1571-1
-
SUSE-SU-2018:1571-2
-
SUSE-SU-2018:1603-1
-
SUSE-SU-2018:1658-1
-
SUSE-SU-2018:1699-1
-
SUSE-SU-2018:1699-2
-
SUSE-SU-2018:1759-1
-
SUSE-SU-2018:1784-1
-
SUSE-SU-2018:1822-1
-
SUSE-SU-2018:2082-1
-
SUSE-SU-2018:2092-1
-
SUSE-SU-2018:2141-1
-
SUSE-SU-2018:2189-1
-
SUSE-SU-2018:2528-1
-
SUSE-SU-2018:2631-1
-
SUSE-SU-2018:2631-2
-
USN-3261-1
-
USN-3516-1
-
USN-3530-1
-
USN-3531-1
-
USN-3531-3
-
USN-3540-1
-
USN-3540-2
-
USN-3541-1
-
USN-3541-2
-
USN-3542-1
-
USN-3542-2
-
USN-3549-1
-
USN-3560-1
-
USN-3561-1
-
USN-3580-1
-
USN-3581-1
-
USN-3581-2
-
USN-3582-1
-
USN-3582-2
-
USN-3594-1
-
USN-3597-1
-
USN-3597-2
-
USN-3620-2
-
USN-3690-1
-
USN-3777-3
-
VU:584653
-
XSA-254
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Suse | SUSE ratings |
|
|
| Suse | URL of this CSAF notice |
|
|
| Suse | URL for SUSE-SU-2018:0039-1 |
|
|
| Suse | E-Mail link for SUSE-SU-2018:0039-1 |
|
|
| Bugzilla | SUSE Bug 1026612 |
|
|
| Bugzilla | SUSE Bug 1068032 |
|
|
| CVE | SUSE CVE CVE-2017-2633 page |
|
|
| CVE | SUSE CVE CVE-2017-5715 page |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/suse/kvm?arch=x86_64&distro=sles-11&sp=3 | suse |
kvm
|
< 1.4.2-53.14.1 | sles-11 | x86_64 | |
| Affected | pkg:rpm/suse/kvm?arch=s390x&distro=sles-11&sp=3 | suse |
kvm
|
< 1.4.2-53.14.1 | sles-11 | s390x | |
| Affected | pkg:rpm/suse/kvm?arch=i586&distro=sles-11&sp=3 | suse |
kvm
|
< 1.4.2-53.14.1 | sles-11 | i586 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |