[SUSE-SU-2020:3050-1] Security update for xen
Severity
Important
Affected Packages
6
CVEs
4
Security update for xen
This update for xen fixes the following issues:
- bsc#1177409 - VUL-0: CVE-2020-27673: xen: x86 PV guest INVLPG-like flushes may leave stale TLB entries (XSA-286)
- bsc#1177412 - VUL-0: CVE-2020-27672: xen: Race condition in Xen mapping code (XSA-345)
- bsc#1177413 - VUL-0: CVE-2020-27671: xen: undue deferral of IOMMU TLB flushes (XSA-346)
- bsc#1177414 - VUL-0: CVE-2020-27670: xen: unsafe AMD IOMMU page table updates (XSA-347)
Package | Affected Version |
---|---|
pkg:rpm/suse/xen?arch=x86_64&distro=sles-12&sp=5 | < 4.12.3_10-3.27.1 |
pkg:rpm/suse/xen-tools?arch=x86_64&distro=sles-12&sp=5 | < 4.12.3_10-3.27.1 |
pkg:rpm/suse/xen-tools-domU?arch=x86_64&distro=sles-12&sp=5 | < 4.12.3_10-3.27.1 |
pkg:rpm/suse/xen-libs?arch=x86_64&distro=sles-12&sp=5 | < 4.12.3_10-3.27.1 |
pkg:rpm/suse/xen-libs-32bit?arch=x86_64&distro=sles-12&sp=5 | < 4.12.3_10-3.27.1 |
pkg:rpm/suse/xen-doc-html?arch=x86_64&distro=sles-12&sp=5 | < 4.12.3_10-3.27.1 |
- ID
- SUSE-SU-2020:3050-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2020/suse-su-20203050-1/
- Published
-
2020-10-27T15:08:45
(3 years ago) - Modified
-
2020-10-27T15:08:45
(3 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2021-1461
- ALAS2-2020-1566
- ALPINE:CVE-2020-27670
- ALPINE:CVE-2020-27671
- ALPINE:CVE-2020-27672
- DSA-4804-1
- ELSA-2020-5995
- ELSA-2020-5996
- ELSA-2021-9009
- FEDORA-2020-6dd36a716c
- FEDORA-2020-98ccae320c
- FEDORA-2020-e211716d08
- GLSA-202011-06
- openSUSE-SU-2020:1783-1
- openSUSE-SU-2020:1844-1
- openSUSE-SU-2020:2162-1
- openSUSE-SU-2020:2192-1
- openSUSE-SU-2021:1975-1
- openSUSE-SU-2021:1977-1
- SUSE-SU-2020:3049-1
- SUSE-SU-2020:3051-1
- SUSE-SU-2020:3052-1
- SUSE-SU-2020:3088-1
- SUSE-SU-2020:3272-1
- SUSE-SU-2020:3281-1
- SUSE-SU-2020:3491-1
- SUSE-SU-2020:3532-1
- SUSE-SU-2020:3544-1
- SUSE-SU-2020:3611-1
- SUSE-SU-2020:3615-1
- SUSE-SU-2020:3627-1
- SUSE-SU-2020:3631-1
- SUSE-SU-2020:3653-1
- SUSE-SU-2020:3742-1
- SUSE-SU-2021:0437-1
- SUSE-SU-2021:1176-1
- SUSE-SU-2021:1573-1
- SUSE-SU-2021:1596-1
- SUSE-SU-2021:1623-1
- SUSE-SU-2021:1624-1
- SUSE-SU-2021:1975-1
- SUSE-SU-2021:1977-1
- USN-4751-1
- XSA-332
- XSA-345
- XSA-346
- XSA-347
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_3050-1.json | |
Suse | URL for SUSE-SU-2020:3050-1 | https://www.suse.com/support/update/announcement/2020/suse-su-20203050-1/ | |
Suse | E-Mail link for SUSE-SU-2020:3050-1 | https://lists.suse.com/pipermail/sle-security-updates/2020-October/007634.html | |
Bugzilla | SUSE Bug 1177409 | https://bugzilla.suse.com/1177409 | |
Bugzilla | SUSE Bug 1177412 | https://bugzilla.suse.com/1177412 | |
Bugzilla | SUSE Bug 1177413 | https://bugzilla.suse.com/1177413 | |
Bugzilla | SUSE Bug 1177414 | https://bugzilla.suse.com/1177414 | |
CVE | SUSE CVE CVE-2020-27670 page | https://www.suse.com/security/cve/CVE-2020-27670/ | |
CVE | SUSE CVE CVE-2020-27671 page | https://www.suse.com/security/cve/CVE-2020-27671/ | |
CVE | SUSE CVE CVE-2020-27672 page | https://www.suse.com/security/cve/CVE-2020-27672/ | |
CVE | SUSE CVE CVE-2020-27673 page | https://www.suse.com/security/cve/CVE-2020-27673/ |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/xen?arch=x86_64&distro=sles-12&sp=5 | suse | xen | < 4.12.3_10-3.27.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-tools?arch=x86_64&distro=sles-12&sp=5 | suse | xen-tools | < 4.12.3_10-3.27.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-tools-domU?arch=x86_64&distro=sles-12&sp=5 | suse | xen-tools-domU | < 4.12.3_10-3.27.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-libs?arch=x86_64&distro=sles-12&sp=5 | suse | xen-libs | < 4.12.3_10-3.27.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-libs-32bit?arch=x86_64&distro=sles-12&sp=5 | suse | xen-libs-32bit | < 4.12.3_10-3.27.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-doc-html?arch=x86_64&distro=sles-12&sp=5 | suse | xen-doc-html | < 4.12.3_10-3.27.1 | sles-12 | x86_64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |