[SUSE-SU-2022:1300-1] Security update for xen
Severity
Important
Affected Packages
7
CVEs
9
Security update for xen
This update for xen fixes the following issues:
- CVE-2022-26356: Fixed potential race conditions in dirty memory tracking that could cause a denial of service in the host (bsc#1197423).
- CVE-2022-26357: Fixed a potential race condition in memory cleanup for hosts using VT-d IOMMU hardware, which could lead to a denial of service in the host (bsc#1197425).
- CVE-2022-26358,CVE-2022-26359,CVE-2022-26360,CVE-2022-26361: Fixed various memory corruption issues for hosts using VT-d or AMD-Vi IOMMU hardware. These could be leveraged by an attacker to cause a denial of service in the host (bsc#1197426).
- CVE-2022-0001, CVE-2022-0002, CVE-2021-26401: Added BHB speculation issue mitigations (bsc#1196915).
| Package | Affected Version |
|---|---|
 pkg:rpm/suse/xen?arch=x86_64&distro=sles-15&sp=2
|
< 4.13.4_08-150200.3.50.1 |
|
pkg:rpm/suse/xen-tools?arch=x86_64&distro=sles-15&sp=2
|
< 4.13.4_08-150200.3.50.1 |
|
pkg:rpm/suse/xen-tools-xendomains-wait-disk?arch=noarch&distro=sles-15&sp=2
|
< 4.13.4_08-150200.3.50.1 |
|
pkg:rpm/suse/xen-tools-domU?arch=x86_64&distro=sles-15&sp=2
|
< 4.13.4_08-150200.3.50.1 |
|
pkg:rpm/suse/xen-libs?arch=x86_64&distro=sles-15&sp=2
|
< 4.13.4_08-150200.3.50.1 |
|
pkg:rpm/suse/xen-libs?arch=x86_64&distro=slem-5
|
< 4.13.4_08-150200.3.50.1 |
|
pkg:rpm/suse/xen-devel?arch=x86_64&distro=sles-15&sp=2
|
< 4.13.4_08-150200.3.50.1 |
- ID
- SUSE-SU-2022:1300-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2022/suse-su-20221300-1/
- Published
-
2022-04-22T06:39:52
(2 years ago) - Modified
-
2022-04-22T06:39:52
(2 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS-2022-1571
-
ALAS2-2022-1761
-
ALPINE:CVE-2022-26356
-
ALPINE:CVE-2022-26357
-
ALPINE:CVE-2022-26358
-
ALPINE:CVE-2022-26359
-
ALPINE:CVE-2022-26360
-
ALPINE:CVE-2022-26361
-
ALSA-2022:1988
-
DSA-5095-1
-
DSA-5096-1
-
DSA-5117-1
-
ELSA-2022-1988
-
ELSA-2022-9244
-
ELSA-2022-9245
-
ELSA-2022-9273
-
ELSA-2022-9274
-
ELSA-2022-9313
-
ELSA-2022-9314
-
ELSA-2023-0187
-
ELSA-2023-0399
-
FEDORA-2022-64b2c02d29
-
FEDORA-2022-b50023a180
-
FEDORA-2022-dfbf7e2372
-
GLSA-202402-07
-
openSUSE-SU-2022:0755-1
-
openSUSE-SU-2022:0760-1
-
openSUSE-SU-2022:0768-1
-
openSUSE-SU-2022:0940-1
-
RHSA-2022:1975
-
RHSA-2022:1988
-
RHSA-2023:0399
-
RHSA-2023:0400
-
RLSA-2022:1988
-
SSA:2022-129-01
-
SUSE-SU-2022:0755-1
-
SUSE-SU-2022:0756-1
-
SUSE-SU-2022:0757-1
-
SUSE-SU-2022:0759-1
-
SUSE-SU-2022:0760-1
-
SUSE-SU-2022:0761-1
-
SUSE-SU-2022:0762-1
-
SUSE-SU-2022:0763-1
-
SUSE-SU-2022:0764-1
-
SUSE-SU-2022:0765-1
-
SUSE-SU-2022:0766-1
-
SUSE-SU-2022:0767-1
-
SUSE-SU-2022:0768-1
-
SUSE-SU-2022:0931-1
-
SUSE-SU-2022:0939-1
-
SUSE-SU-2022:0940-1
-
SUSE-SU-2022:1196-1
-
SUSE-SU-2022:1285-1
-
SUSE-SU-2022:1359-1
-
SUSE-SU-2022:1375-1
-
SUSE-SU-2022:1408-1
-
SUSE-SU-2022:1505-1
-
SUSE-SU-2022:1506-1
-
SUSE-SU-2022:2065-1
-
SUSE-SU-2022:2158-1
-
USN-5317-1
-
USN-5318-1
-
USN-5319-1
-
USN-5362-1
-
USN-5415-1
-
USN-5417-1
-
USN-5418-1
-
USN-6001-1
-
USN-6013-1
-
USN-6014-1
-
VU:155143
-
XSA-397
-
XSA-399
-
XSA-400
-
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/suse/xen?arch=x86_64&distro=sles-15&sp=2 | suse |
xen
|
< 4.13.4_08-150200.3.50.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/xen-tools?arch=x86_64&distro=sles-15&sp=2 | suse |
xen-tools
|
< 4.13.4_08-150200.3.50.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/xen-tools-xendomains-wait-disk?arch=noarch&distro=sles-15&sp=2 | suse |
xen-tools-xendomains-wait-disk
|
< 4.13.4_08-150200.3.50.1 | sles-15 | noarch | |
| Affected | pkg:rpm/suse/xen-tools-domU?arch=x86_64&distro=sles-15&sp=2 | suse |
xen-tools-domU
|
< 4.13.4_08-150200.3.50.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/xen-libs?arch=x86_64&distro=sles-15&sp=2 | suse |
xen-libs
|
< 4.13.4_08-150200.3.50.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/xen-libs?arch=x86_64&distro=slem-5 | suse |
xen-libs
|
< 4.13.4_08-150200.3.50.1 | slem-5 | x86_64 | |
| Affected | pkg:rpm/suse/xen-devel?arch=x86_64&distro=sles-15&sp=2 | suse |
xen-devel
|
< 4.13.4_08-150200.3.50.1 | sles-15 | x86_64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |