1. Home
  2. Security Advisories
  3. SUSE
  4. SUSE-SU-2023:3446-1

[SUSE-SU-2023:3446-1] Security update for xen

Severity Moderate
Affected Packages 1
CVEs 3
Info Packages References Vulnerabilities

Security update for xen

This update for xen fixes the following issues:

  • CVE-2023-20569: Fixed side channel attack Inception or RAS Poisoning. (bsc#1214082, XSA-434)
  • CVE-2022-40982: Fixed transient execution attack called 'Gather Data Sampling'. (bsc#1214083, XSA-435)
  • CVE-2023-20593: Fixed a ZenBleed issue in 'Zen 2' CPUs that could allow an attacker to potentially access sensitive information. (bsc#1213616, XSA-433)
Package Affected Version
pkg:rpm/suse/xen-libs?arch=x86_64&distro=slem-5 < 4.14.6_02-150300.3.51.1
ID
SUSE-SU-2023:3446-1
Severity
moderate
URL
https://www.suse.com/support/update/announcement/2023/suse-su-20233446-1/
Published
2023-08-28T08:56:56
(12 months ago)
Modified
2023-08-28T08:56:56
(12 months ago)
Rights
Copyright 2024 SUSE LLC. All rights reserved.
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/suse/xen-libs?arch=x86_64&distro=slem-5 suse xen-libs < 4.14.6_02-150300.3.51.1 slem-5 x86_64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date