SUSE: Security Advisory (SUSE-SU-2020:3615-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : xen (SUSE-SU-2020:3742-1)

This update for xen fixes the following issues : bsc1178963 - stack corruption from XSA-346 change XSA-355 bsc1177409 - CVE-2020-27674: x86 PV guest INVLPG-like flushes may leave stale TLB entries XSA-286 bsc1177412 - CVE-2020-27672: Race condition in Xen mapping code XSA-345 bsc1177413 -...

SUSE SLES12 Security Update : xen (SUSE-SU-2020:3631-1)

This update for xen fixes the following issues : bsc1178963 - stack corruption from XSA-346 change XSA-355 bsc1177409 - CVE-2020-27674: x86 PV guest INVLPG-like flushes may leave stale TLB entries XSA-286 bsc1177412 - CVE-2020-27672: Race condition in Xen mapping code XSA-345 bsc1177413 -...

SUSE SLES12 Security Update : xen (SUSE-SU-2020:3050-1)

This update for xen fixes the following issues : bsc1177409 - VUL-0: CVE-2020-27673: xen: x86 PV guest INVLPG-like flushes may leave stale TLB entries XSA-286 bsc1177412 - VUL-0: CVE-2020-27672: xen: Race condition in Xen mapping code XSA-345 bsc1177413 - VUL-0: CVE-2020-27671: xen: undue deferra...

SUSE SLED15 / SLES15 Security Update : xen (SUSE-SU-2020:3049-1)

This update for xen fixes the following issues : bsc1177409 - VUL-0: CVE-2020-27673: xen: x86 PV guest INVLPG-like flushes may leave stale TLB entries XSA-286 bsc1177412 - VUL-0: CVE-2020-27672: xen: Race condition in Xen mapping code XSA-345 bsc1177413 - VUL-0: CVE-2020-27671: xen: undue deferra...

SUSE SLES12 Security Update : xen (SUSE-SU-2020:3088-1)

This update for xen fixes the following issues : bsc1177409 - VUL-0: CVE-2020-27673: xen: x86 PV guest INVLPG-like flushes may leave stale TLB entries XSA-286 bsc1177412 - VUL-0: CVE-2020-27672: xen: Race condition in Xen mapping code XSA-345 bsc1177413 - VUL-0: CVE-2020-27671: xen: undue deferra...

OPENSUSE-SU-2020:2162-1 Security update for xen

This update for xen fixes the following issues: - bsc1178963 - VUL-0: xen: stack corruption from XSA-346 change XSA-355 This update was imported from the SUSE:SLE-15-SP2:Update update project...

SUSE-SU-2020:3612-1 Security update for xen

This update for xen fixes the following issues: - bsc1178963 - VUL-0: xen: stack corruption from XSA-346 change XSA-355...

SUSE-SU-2020:3611-1 Security update for xen

This update for xen fixes the following issues: - bsc1178963 - VUL-0: xen: stack corruption from XSA-346 change XSA-355...

Fedora 33 : xen (2020-d71fa5f0b9)

stack corruption from XSA-346 change XSA-355 ---- Information leak via power sidechannel XSA-351 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

stack corruption from XSA-346 change

ISSUE DESCRIPTION One of the two changes for XSA-346 introduced an on-stack array. The check for guarding against overrunning this array was off by one, allowing for corruption of the first stack slot immediately following this array. IMPACT A malicious or buggy HVM or PVH guest can cause Xen to...

Fedora 31 : xen (2020-6dd36a716c)

revised patch for XSA-286 mitigating performance impact ---- x86 PV guest INVLPG-like flushes may leave stale TLB entries XSA-286, CVE-2020-27674 1891092 ---- x86: Race condition in Xen mapping code XSA-345 undue deferral of IOMMU TLB flushes XSA-346 unsafe AMD IOMMU page table updates XSA-347 No...

Fedora 33 : xen (2020-97775b4234)

x86: Race condition in Xen mapping code XSA-345 undue deferral of IOMMU TLB flushes XSA-346 unsafe AMD IOMMU page table updates XSA-347 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

CVE-2020-27671

A flaw was found to occur in the Xen optimization to coalesce per-page IOMMU TLB flushes. This flaw allows malicious x86 HVM and PVH guests to cause host data corruption and data leaks, resulting in a denial of service DoS or potential privilege escalation. The highest threat from this...