[SUSE-SU-2018:2056-1] Security update for xen
Severity
Moderate
Affected Packages
7
CVEs
5
Security update for xen
This update for xen fixes the following issues:
Security issues fixed:
- CVE-2018-12617: Fix integer overflow that causes segmentation fault in qmp_guest_file_read() with g_malloc() (bsc#1098744).
- CVE-2018-3665: Fix Lazy FP Save/Restore issue (XSA-267) (bsc#1095242).
- CVE-2018-11806: Fix heap buffer overflow while reassembling fragmented datagrams (bsc#1096224).
- CVE-2018-12891: Fix possible Denial of Service (DoS) via certain PV MMU operations that affect the entire host (XSA-264) (bsc#1097521).
- CVE-2018-12893: Fix crash/Denial of Service (DoS) via safety check (XSA-265) (bsc#1097522).
Bug fixes:
- bsc#1079730: Fix failed 'write' lock.
- bsc#1027519: Add upstream patches from January.
Package | Affected Version |
---|---|
pkg:rpm/suse/xen?arch=x86_64&distro=sles-12 | < 4.4.4_34-22.71.2 |
pkg:rpm/suse/xen-tools?arch=x86_64&distro=sles-12 | < 4.4.4_34-22.71.2 |
pkg:rpm/suse/xen-tools-domU?arch=x86_64&distro=sles-12 | < 4.4.4_34-22.71.2 |
pkg:rpm/suse/xen-libs?arch=x86_64&distro=sles-12 | < 4.4.4_34-22.71.2 |
pkg:rpm/suse/xen-libs-32bit?arch=x86_64&distro=sles-12 | < 4.4.4_34-22.71.2 |
pkg:rpm/suse/xen-kmp-default?arch=x86_64&distro=sles-12 | < 4.4.4_34_k3.12.61_52.136-22.71.2 |
pkg:rpm/suse/xen-doc-html?arch=x86_64&distro=sles-12 | < 4.4.4_34-22.71.2 |
- ID
- SUSE-SU-2018:2056-1
- Severity
- moderate
- URL
- https://www.suse.com/support/update/announcement/2018/suse-su-20182056-1/
- Published
-
2018-07-25T09:01:09
(6 years ago) - Modified
-
2018-07-25T09:01:09
(6 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2018-1073
- ALAS2-2018-1073
- ALPINE:CVE-2018-12891
- ALPINE:CVE-2018-12893
- ALPINE:CVE-2018-3665
- DSA-4232-1
- DSA-4236-1
- DSA-4454-1
- ELSA-2018-1852
- ELSA-2018-2164
- ELSA-2018-2462
- ELSA-2018-4134
- ELSA-2018-4144
- ELSA-2018-4145
- ELSA-2018-4262
- ELSA-2018-4285
- ELSA-2018-4289
- ELSA-2019-2892
- ELSA-2019-4585
- FEDORA-2018-1a467757ce
- FEDORA-2018-683dfde81a
- FEDORA-2018-6c1be5e1c8
- FEDORA-2018-73dd8de892
- FEDORA-2018-74fb8b257b
- FEDORA-2018-915602df63
- FEDORA-2018-a7862a75f5
- FEDORA-2018-d3cb6f113c
- FEDORA-2018-f20a0cead5
- FEDORA-2018-fe24359b69
- FEDORA-2019-6e146a714c
- FEDORA-2019-bce6498890
- FREEBSD:4E07D94F-75A5-11E8-85D1-A4BADB2F4699
- GLSA-201810-06
- RHSA-2018:1852
- RHSA-2018:1944
- RHSA-2018:2164
- RHSA-2018:2462
- RHSA-2018:2762
- RHSA-2019:2892
- SUSE-SU-2018:1761-1
- SUSE-SU-2018:1762-1
- SUSE-SU-2018:1772-1
- SUSE-SU-2018:1816-1
- SUSE-SU-2018:1821-1
- SUSE-SU-2018:1846-1
- SUSE-SU-2018:1849-1
- SUSE-SU-2018:1855-1
- SUSE-SU-2018:1855-2
- SUSE-SU-2018:1940-1
- SUSE-SU-2018:1942-1
- SUSE-SU-2018:1943-1
- SUSE-SU-2018:1944-1
- SUSE-SU-2018:1945-1
- SUSE-SU-2018:1946-1
- SUSE-SU-2018:1947-1
- SUSE-SU-2018:1948-1
- SUSE-SU-2018:1949-1
- SUSE-SU-2018:1981-1
- SUSE-SU-2018:2037-1
- SUSE-SU-2018:2048-1
- SUSE-SU-2018:2059-1
- SUSE-SU-2018:2069-1
- SUSE-SU-2018:2081-1
- SUSE-SU-2018:2081-2
- SUSE-SU-2018:2086-1
- SUSE-SU-2018:2087-1
- SUSE-SU-2018:2088-1
- SUSE-SU-2018:2090-1
- SUSE-SU-2018:2091-1
- SUSE-SU-2018:2093-1
- SUSE-SU-2018:2094-1
- SUSE-SU-2018:2095-1
- SUSE-SU-2018:2096-1
- SUSE-SU-2018:2097-1
- SUSE-SU-2018:2098-1
- SUSE-SU-2018:2099-1
- SUSE-SU-2018:2100-1
- SUSE-SU-2018:2101-1
- SUSE-SU-2018:2102-1
- SUSE-SU-2018:2103-1
- SUSE-SU-2018:2104-1
- SUSE-SU-2018:2105-1
- SUSE-SU-2018:2106-1
- SUSE-SU-2018:2107-1
- SUSE-SU-2018:2108-1
- SUSE-SU-2018:2109-1
- SUSE-SU-2018:2110-1
- SUSE-SU-2018:2111-1
- SUSE-SU-2018:2112-1
- SUSE-SU-2018:2113-1
- SUSE-SU-2018:2114-1
- SUSE-SU-2018:2115-1
- SUSE-SU-2018:2248-1
- SUSE-SU-2018:2250-1
- SUSE-SU-2018:2254-1
- SUSE-SU-2018:2255-1
- SUSE-SU-2018:2262-1
- SUSE-SU-2018:2263-1
- SUSE-SU-2018:2264-1
- SUSE-SU-2018:2266-1
- SUSE-SU-2018:2267-1
- SUSE-SU-2018:2268-1
- SUSE-SU-2018:2269-1
- SUSE-SU-2018:2270-1
- SUSE-SU-2018:2271-1
- SUSE-SU-2018:2340-1
- SUSE-SU-2018:2528-1
- SUSE-SU-2018:2556-1
- SUSE-SU-2018:2565-1
- SUSE-SU-2018:2615-1
- SUSE-SU-2018:2650-1
- SUSE-SU-2018:2679-1
- SUSE-SU-2018:2973-1
- SUSE-SU-2018:2973-2
- SUSE-SU-2018:3555-1
- USN-3696-1
- USN-3696-2
- USN-3698-1
- USN-3698-2
- USN-3826-1
- XSA-264
- XSA-265
- XSA-267
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/xen?arch=x86_64&distro=sles-12 | suse | xen | < 4.4.4_34-22.71.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-tools?arch=x86_64&distro=sles-12 | suse | xen-tools | < 4.4.4_34-22.71.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-tools-domU?arch=x86_64&distro=sles-12 | suse | xen-tools-domU | < 4.4.4_34-22.71.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-libs?arch=x86_64&distro=sles-12 | suse | xen-libs | < 4.4.4_34-22.71.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-libs-32bit?arch=x86_64&distro=sles-12 | suse | xen-libs-32bit | < 4.4.4_34-22.71.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-kmp-default?arch=x86_64&distro=sles-12 | suse | xen-kmp-default | < 4.4.4_34_k3.12.61_52.136-22.71.2 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-doc-html?arch=x86_64&distro=sles-12 | suse | xen-doc-html | < 4.4.4_34-22.71.2 | sles-12 | x86_64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |