[SUSE-SU-2024:1105-1] Security update for xen
Severity
Moderate
Affected Packages
6
CVEs
2
Security update for xen
This update for xen fixes the following issues:
- CVE-2023-28746: Register file data sampling. (bsc#1221332)
- CVE-2024-2193: Fixed GhostRace, a speculative race conditions. (bsc#1221334)
Package | Affected Version |
---|---|
pkg:rpm/suse/xen?arch=x86_64&distro=sles-12&sp=5 | < 4.12.4_46-3.106.1 |
pkg:rpm/suse/xen-tools?arch=x86_64&distro=sles-12&sp=5 | < 4.12.4_46-3.106.1 |
pkg:rpm/suse/xen-tools-domU?arch=x86_64&distro=sles-12&sp=5 | < 4.12.4_46-3.106.1 |
pkg:rpm/suse/xen-libs?arch=x86_64&distro=sles-12&sp=5 | < 4.12.4_46-3.106.1 |
pkg:rpm/suse/xen-libs-32bit?arch=x86_64&distro=sles-12&sp=5 | < 4.12.4_46-3.106.1 |
pkg:rpm/suse/xen-doc-html?arch=x86_64&distro=sles-12&sp=5 | < 4.12.4_46-3.106.1 |
- ID
- SUSE-SU-2024:1105-1
- Severity
- moderate
- URL
- https://www.suse.com/support/update/announcement/2024/suse-su-20241105-1/
- Published
-
2024-04-03T13:32:35
(5 months ago) - Modified
-
2024-04-03T13:32:35
(5 months ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS2-2024-2525
- ALPINE:CVE-2023-28746
- ALPINE:CVE-2024-2193
- ALSA-2024:5101
- DSA-5681-1
- ELSA-2024-5101
- FEDORA-2024-29f57f1b4e
- FEDORA-2024-3a36322c4b
- FEDORA-2024-96f3c3f3d3
- FEDORA-2024-9e9f53d01d
- FEDORA-2024-f3692f8528
- FREEBSD:B6DD9D93-E09B-11EE-92FC-1C697A616631
- MS:CVE-2023-28746
- RHSA-2024:5101
- RLSA-2024:5101
- SUSE-SU-2024:0856-1
- SUSE-SU-2024:0857-1
- SUSE-SU-2024:0858-1
- SUSE-SU-2024:0900-1
- SUSE-SU-2024:0900-2
- SUSE-SU-2024:0910-1
- SUSE-SU-2024:0917-1
- SUSE-SU-2024:0925-1
- SUSE-SU-2024:0926-1
- SUSE-SU-2024:0975-1
- SUSE-SU-2024:0976-1
- SUSE-SU-2024:0977-1
- SUSE-SU-2024:1101-1
- SUSE-SU-2024:1102-1
- SUSE-SU-2024:1139-1
- SUSE-SU-2024:1152-1
- SUSE-SU-2024:1321-1
- SUSE-SU-2024:1322-1
- SUSE-SU-2024:1454-1
- SUSE-SU-2024:1466-1
- SUSE-SU-2024:1480-1
- SUSE-SU-2024:1489-1
- SUSE-SU-2024:1490-1
- SUSE-SU-2024:1643-1
- SUSE-SU-2024:1648-1
- SUSE-SU-2024:1669-1
- SUSE-SU-2024:1870-1
- SUSE-SU-2024:2535-1
- USN-6797-1
- VU:488902
- XSA-452
- XSA-453
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1105-1.json | |
Suse | URL for SUSE-SU-2024:1105-1 | https://www.suse.com/support/update/announcement/2024/suse-su-20241105-1/ | |
Suse | E-Mail link for SUSE-SU-2024:1105-1 | https://lists.suse.com/pipermail/sle-updates/2024-April/034840.html | |
Bugzilla | SUSE Bug 1027519 | https://bugzilla.suse.com/1027519 | |
Bugzilla | SUSE Bug 1220141 | https://bugzilla.suse.com/1220141 | |
Bugzilla | SUSE Bug 1221332 | https://bugzilla.suse.com/1221332 | |
Bugzilla | SUSE Bug 1221334 | https://bugzilla.suse.com/1221334 | |
CVE | SUSE CVE CVE-2023-28746 page | https://www.suse.com/security/cve/CVE-2023-28746/ | |
CVE | SUSE CVE CVE-2024-2193 page | https://www.suse.com/security/cve/CVE-2024-2193/ |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/xen?arch=x86_64&distro=sles-12&sp=5 | suse | xen | < 4.12.4_46-3.106.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-tools?arch=x86_64&distro=sles-12&sp=5 | suse | xen-tools | < 4.12.4_46-3.106.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-tools-domU?arch=x86_64&distro=sles-12&sp=5 | suse | xen-tools-domU | < 4.12.4_46-3.106.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-libs?arch=x86_64&distro=sles-12&sp=5 | suse | xen-libs | < 4.12.4_46-3.106.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-libs-32bit?arch=x86_64&distro=sles-12&sp=5 | suse | xen-libs-32bit | < 4.12.4_46-3.106.1 | sles-12 | x86_64 | |
Affected | pkg:rpm/suse/xen-doc-html?arch=x86_64&distro=sles-12&sp=5 | suse | xen-doc-html | < 4.12.4_46-3.106.1 | sles-12 | x86_64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |