1. Home
  2. Security Advisories
  3. SUSE
  4. SUSE-SU-2022:3665-1

[SUSE-SU-2022:3665-1] Security update for xen

Severity Important
Affected Packages 16
CVEs 8
Info Packages References Vulnerabilities

Security update for xen

This update for xen fixes the following issues:

  • CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing (bsc#1203806).
  • CVE-2022-33748: Fixed DoS due to race in locking (bsc#1203807).
  • CVE-2022-26365: Fixed issue where Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (bsc#1200762).
  • CVE-2022-33740: Fixed issue where Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (bsc#1200762).
  • CVE-2022-33741: Fixed issue where data residing in the same 4K page as data shared with a backend was being accessible by such backend (bsc#1200762).
  • CVE-2022-33742: Fixed issue where data residing in the same 4K page as data shared with a backend was being accessible by such backend (bsc#1200762).
  • CVE-2022-33745: Fixed an insufficient TLB flush for x86 PV guests in shadow mode (bsc#1201394).

  • CVE-2021-28689: Fixed speculative vulnerabilities with bare (non-shim) 32-bit PV guests (bsc#1185104).

    Bugfixes:

  • Fixed logic error in built-in default of max_event_channels (bsc#1167608, bsc#1201631).

  • Fixed issue where dom0 fails to boot with constrained vcpus and nodes (bsc#1197081).

  • Included upstream bugfixes (bsc#1027519).

Package Affected Version
pkg:rpm/suse/xen?arch=x86_64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen?arch=aarch64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-tools?arch=x86_64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-tools?arch=aarch64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-tools-xendomains-wait-disk?arch=noarch&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-tools-domU?arch=x86_64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-tools-domU?arch=aarch64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-libs?arch=x86_64&distro=slem-5 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-libs?arch=x86_64&distro=opensuse-leap-micro-5.2 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-libs?arch=x86_64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-libs?arch=aarch64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-libs-32bit?arch=x86_64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-doc-html?arch=x86_64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-doc-html?arch=aarch64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-devel?arch=x86_64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
pkg:rpm/suse/xen-devel?arch=aarch64&distro=opensuse-leap-15.3 < 4.14.5_06-150300.3.35.1
ID
SUSE-SU-2022:3665-1
Severity
important
URL
https://www.suse.com/support/update/announcement/2022/suse-su-20223665-1/
Published
2022-10-19T18:29:23
(23 months ago)
Modified
2022-10-19T18:29:23
(23 months ago)
Rights
Copyright 2024 SUSE LLC. All rights reserved.
Other Advisories
Source # ID Name URL
Suse SUSE ratings https://www.suse.com/support/security/rating/
Suse URL of this CSAF notice https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_3665-1.json
Suse URL for SUSE-SU-2022:3665-1 https://www.suse.com/support/update/announcement/2022/suse-su-20223665-1/
Suse E-Mail link for SUSE-SU-2022:3665-1 https://lists.suse.com/pipermail/sle-security-updates/2022-October/012580.html
Bugzilla SUSE Bug 1027519 https://bugzilla.suse.com/1027519
Bugzilla SUSE Bug 1167608 https://bugzilla.suse.com/1167608
Bugzilla SUSE Bug 1185104 https://bugzilla.suse.com/1185104
Bugzilla SUSE Bug 1197081 https://bugzilla.suse.com/1197081
Bugzilla SUSE Bug 1200762 https://bugzilla.suse.com/1200762
Bugzilla SUSE Bug 1201394 https://bugzilla.suse.com/1201394
Bugzilla SUSE Bug 1201631 https://bugzilla.suse.com/1201631
Bugzilla SUSE Bug 1203806 https://bugzilla.suse.com/1203806
Bugzilla SUSE Bug 1203807 https://bugzilla.suse.com/1203807
CVE SUSE CVE CVE-2021-28689 page https://www.suse.com/security/cve/CVE-2021-28689/
CVE SUSE CVE CVE-2022-26365 page https://www.suse.com/security/cve/CVE-2022-26365/
CVE SUSE CVE CVE-2022-33740 page https://www.suse.com/security/cve/CVE-2022-33740/
CVE SUSE CVE CVE-2022-33741 page https://www.suse.com/security/cve/CVE-2022-33741/
CVE SUSE CVE CVE-2022-33742 page https://www.suse.com/security/cve/CVE-2022-33742/
CVE SUSE CVE CVE-2022-33745 page https://www.suse.com/security/cve/CVE-2022-33745/
CVE SUSE CVE CVE-2022-33746 page https://www.suse.com/security/cve/CVE-2022-33746/
CVE SUSE CVE CVE-2022-33748 page https://www.suse.com/security/cve/CVE-2022-33748/
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/suse/xen?arch=x86_64&distro=opensuse-leap-15.3 suse xen < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 x86_64
Affected pkg:rpm/suse/xen?arch=aarch64&distro=opensuse-leap-15.3 suse xen < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 aarch64
Affected pkg:rpm/suse/xen-tools?arch=x86_64&distro=opensuse-leap-15.3 suse xen-tools < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 x86_64
Affected pkg:rpm/suse/xen-tools?arch=aarch64&distro=opensuse-leap-15.3 suse xen-tools < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 aarch64
Affected pkg:rpm/suse/xen-tools-xendomains-wait-disk?arch=noarch&distro=opensuse-leap-15.3 suse xen-tools-xendomains-wait-disk < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 noarch
Affected pkg:rpm/suse/xen-tools-domU?arch=x86_64&distro=opensuse-leap-15.3 suse xen-tools-domU < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 x86_64
Affected pkg:rpm/suse/xen-tools-domU?arch=aarch64&distro=opensuse-leap-15.3 suse xen-tools-domU < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 aarch64
Affected pkg:rpm/suse/xen-libs?arch=x86_64&distro=slem-5 suse xen-libs < 4.14.5_06-150300.3.35.1 slem-5 x86_64
Affected pkg:rpm/suse/xen-libs?arch=x86_64&distro=opensuse-leap-micro-5.2 suse xen-libs < 4.14.5_06-150300.3.35.1 opensuse-leap-micro-5.2 x86_64
Affected pkg:rpm/suse/xen-libs?arch=x86_64&distro=opensuse-leap-15.3 suse xen-libs < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 x86_64
Affected pkg:rpm/suse/xen-libs?arch=aarch64&distro=opensuse-leap-15.3 suse xen-libs < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 aarch64
Affected pkg:rpm/suse/xen-libs-32bit?arch=x86_64&distro=opensuse-leap-15.3 suse xen-libs-32bit < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 x86_64
Affected pkg:rpm/suse/xen-doc-html?arch=x86_64&distro=opensuse-leap-15.3 suse xen-doc-html < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 x86_64
Affected pkg:rpm/suse/xen-doc-html?arch=aarch64&distro=opensuse-leap-15.3 suse xen-doc-html < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 aarch64
Affected pkg:rpm/suse/xen-devel?arch=x86_64&distro=opensuse-leap-15.3 suse xen-devel < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 x86_64
Affected pkg:rpm/suse/xen-devel?arch=aarch64&distro=opensuse-leap-15.3 suse xen-devel < 4.14.5_06-150300.3.35.1 opensuse-leap-15.3 aarch64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date