[SUSE-SU-2022:1300-1] Security update for xen
Severity
Important
Affected Packages
7
CVEs
9
Security update for xen
This update for xen fixes the following issues:
- CVE-2022-26356: Fixed potential race conditions in dirty memory tracking that could cause a denial of service in the host (bsc#1197423).
- CVE-2022-26357: Fixed a potential race condition in memory cleanup for hosts using VT-d IOMMU hardware, which could lead to a denial of service in the host (bsc#1197425).
- CVE-2022-26358,CVE-2022-26359,CVE-2022-26360,CVE-2022-26361: Fixed various memory corruption issues for hosts using VT-d or AMD-Vi IOMMU hardware. These could be leveraged by an attacker to cause a denial of service in the host (bsc#1197426).
- CVE-2022-0001, CVE-2022-0002, CVE-2021-26401: Added BHB speculation issue mitigations (bsc#1196915).
Package | Affected Version |
---|---|
pkg:rpm/suse/xen?arch=x86_64&distro=sles-15&sp=2 | < 4.13.4_08-150200.3.50.1 |
pkg:rpm/suse/xen-tools?arch=x86_64&distro=sles-15&sp=2 | < 4.13.4_08-150200.3.50.1 |
pkg:rpm/suse/xen-tools-xendomains-wait-disk?arch=noarch&distro=sles-15&sp=2 | < 4.13.4_08-150200.3.50.1 |
pkg:rpm/suse/xen-tools-domU?arch=x86_64&distro=sles-15&sp=2 | < 4.13.4_08-150200.3.50.1 |
pkg:rpm/suse/xen-libs?arch=x86_64&distro=sles-15&sp=2 | < 4.13.4_08-150200.3.50.1 |
pkg:rpm/suse/xen-libs?arch=x86_64&distro=slem-5 | < 4.13.4_08-150200.3.50.1 |
pkg:rpm/suse/xen-devel?arch=x86_64&distro=sles-15&sp=2 | < 4.13.4_08-150200.3.50.1 |
- ID
- SUSE-SU-2022:1300-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2022/suse-su-20221300-1/
- Published
-
2022-04-22T06:39:52
(2 years ago) - Modified
-
2022-04-22T06:39:52
(2 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2022-1571
- ALAS2-2022-1761
- ALPINE:CVE-2022-26356
- ALPINE:CVE-2022-26357
- ALPINE:CVE-2022-26358
- ALPINE:CVE-2022-26359
- ALPINE:CVE-2022-26360
- ALPINE:CVE-2022-26361
- ALSA-2022:1988
- DSA-5095-1
- DSA-5096-1
- DSA-5117-1
- ELSA-2022-1988
- ELSA-2022-9244
- ELSA-2022-9245
- ELSA-2022-9273
- ELSA-2022-9274
- ELSA-2022-9313
- ELSA-2022-9314
- ELSA-2023-0187
- ELSA-2023-0399
- FEDORA-2022-64b2c02d29
- FEDORA-2022-b50023a180
- FEDORA-2022-dfbf7e2372
- GLSA-202402-07
- openSUSE-SU-2022:0755-1
- openSUSE-SU-2022:0760-1
- openSUSE-SU-2022:0768-1
- openSUSE-SU-2022:0940-1
- RHSA-2022:1975
- RHSA-2022:1988
- RHSA-2023:0399
- RHSA-2023:0400
- RLSA-2022:1988
- SSA:2022-129-01
- SUSE-SU-2022:0755-1
- SUSE-SU-2022:0756-1
- SUSE-SU-2022:0757-1
- SUSE-SU-2022:0759-1
- SUSE-SU-2022:0760-1
- SUSE-SU-2022:0761-1
- SUSE-SU-2022:0762-1
- SUSE-SU-2022:0763-1
- SUSE-SU-2022:0764-1
- SUSE-SU-2022:0765-1
- SUSE-SU-2022:0766-1
- SUSE-SU-2022:0767-1
- SUSE-SU-2022:0768-1
- SUSE-SU-2022:0931-1
- SUSE-SU-2022:0939-1
- SUSE-SU-2022:0940-1
- SUSE-SU-2022:1196-1
- SUSE-SU-2022:1285-1
- SUSE-SU-2022:1359-1
- SUSE-SU-2022:1375-1
- SUSE-SU-2022:1408-1
- SUSE-SU-2022:1505-1
- SUSE-SU-2022:1506-1
- SUSE-SU-2022:2065-1
- SUSE-SU-2022:2158-1
- USN-5317-1
- USN-5318-1
- USN-5319-1
- USN-5362-1
- USN-5415-1
- USN-5417-1
- USN-5418-1
- USN-6001-1
- USN-6013-1
- USN-6014-1
- VU:155143
- XSA-397
- XSA-399
- XSA-400
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/xen?arch=x86_64&distro=sles-15&sp=2 | suse | xen | < 4.13.4_08-150200.3.50.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/xen-tools?arch=x86_64&distro=sles-15&sp=2 | suse | xen-tools | < 4.13.4_08-150200.3.50.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/xen-tools-xendomains-wait-disk?arch=noarch&distro=sles-15&sp=2 | suse | xen-tools-xendomains-wait-disk | < 4.13.4_08-150200.3.50.1 | sles-15 | noarch | |
Affected | pkg:rpm/suse/xen-tools-domU?arch=x86_64&distro=sles-15&sp=2 | suse | xen-tools-domU | < 4.13.4_08-150200.3.50.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/xen-libs?arch=x86_64&distro=sles-15&sp=2 | suse | xen-libs | < 4.13.4_08-150200.3.50.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/xen-libs?arch=x86_64&distro=slem-5 | suse | xen-libs | < 4.13.4_08-150200.3.50.1 | slem-5 | x86_64 | |
Affected | pkg:rpm/suse/xen-devel?arch=x86_64&distro=sles-15&sp=2 | suse | xen-devel | < 4.13.4_08-150200.3.50.1 | sles-15 | x86_64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |