Lucene search
SuseOPENSUSE-SU-2015:0732-1HistoryApr 20, 2015 - 4:04 p.m.
Security update for xen (important)
2015-04-2016:04:56
lists.opensuse.org
16
0.001 Low
EPSS
Percentile
35.9%
Xen was updated to 4.3.4 to fix multiple vulnerabities and non-security
bugs.
The following vulnerabilities were fixed:
- Long latency MMIO mapping operations are not preemptible (XSA-125
CVE-2015-2752 bnc#922705) - Unmediated PCI command register access in qemu (XSA-126 CVE-2015-2756
bnc#922706) - Hypervisor memory corruption due to x86 emulator flaw (bnc#919464
CVE-2015-2151 XSA-123) - Information leak through version information hypercall (bnc#918998
CVE-2015-2045 XSA-122) - Information leak via internal x86 system device emulation (bnc#918995
(CVE-2015-2044 XSA-121) - HVM qemu unexpectedly enabling emulated VGA graphics backends
(bnc#919663 CVE-2015-2152 XSA-119) - information leakage when guest sets high resolution (bnc#895528
CVE-2014-3615)
The following non-security bugs were fixed:
- L3: XEN blktap device intermittently fails to connect (bnc#919098)
- Problems with detecting free loop devices on Xen guest startup
(bnc#903680) - xentop reports "Found interface vif101.0 but domain 101 does not exist."
(bnc#861318) - Intel ixgbe driver assigns rx/tx queues per core resulting in irq
problems on servers with a large amount of CPU cores (bnc#901488) - SLES11 SP3 Xen VT-d igb NIC doesn’t work (bnc#910254)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 13.1 | i586 | xen-tools-domu | < 4.3.4_02-41.1 | xen-tools-domU-4.3.4_02-41.1.i586.rpm |
| openSUSE | 13.1 | x86_64 | xen-kmp-default | < 4.3.4_02_k3.11.10_29-41.1 | xen-kmp-default-4.3.4_02_k3.11.10_29-41.1.x86_64.rpm |
| openSUSE | 13.1 | x86_64 | xen-doc-html | < 4.3.4_02-41.1 | xen-doc-html-4.3.4_02-41.1.x86_64.rpm |
| openSUSE | 13.1 | i586 | xen-debugsource | < 4.3.4_02-41.1 | xen-debugsource-4.3.4_02-41.1.i586.rpm |
| openSUSE | 13.1 | i586 | xen-libs | < 4.3.4_02-41.1 | xen-libs-4.3.4_02-41.1.i586.rpm |
| openSUSE | 13.1 | x86_64 | xen-kmp-desktop | < 4.3.4_02_k3.11.10_29-41.1 | xen-kmp-desktop-4.3.4_02_k3.11.10_29-41.1.x86_64.rpm |
| openSUSE | 13.1 | i586 | xen-devel | < 4.3.4_02-41.1 | xen-devel-4.3.4_02-41.1.i586.rpm |
| openSUSE | 13.1 | i586 | xen-kmp-pae-debuginfo | < 4.3.4_02_k3.11.10_29-41.1 | xen-kmp-pae-debuginfo-4.3.4_02_k3.11.10_29-41.1.i586.rpm |
| openSUSE | 13.1 | x86_64 | xen-debugsource | < 4.3.4_02-41.1 | xen-debugsource-4.3.4_02-41.1.x86_64.rpm |
| openSUSE | 13.1 | x86_64 | xen-tools | < 4.3.4_02-41.1 | xen-tools-4.3.4_02-41.1.x86_64.rpm |
Related
nessus
nessus
openSUSE Security Update : xen (openSUSE-2015-314)
2015-04-21 00:00:00
Fedora 20 : xen-4.3.3-12.fc20 (2015-3721)
2015-03-25 00:00:00
Fedora 22 : xen-4.5.0-6.fc22 (2015-3935)
2015-03-23 00:00:00
openvas
openvas
openSUSE: Security Advisory for xen (openSUSE-SU-2015:0732-1)
2015-04-21 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0747-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0746-1)
2021-06-09 00:00:00
citrix
citrix
Citrix XenServer Multiple Security Updates
2015-03-02 04:00:00
securityvulns
securityvulns
Xen multiple security vulnerabilities
2015-03-15 00:00:00
[SECURITY] [DSA 3181-1] xen security update
2015-03-15 00:00:00
[USN-2608-1] QEMU vulnerabilities
2015-05-17 00:00:00
osv
osv
xen - security update
2015-03-10 00:00:00
qemu - security update
2015-05-13 00:00:00
xen - security update
2016-05-17 00:00:00
debian
debian
[SECURITY] [DSA 3181-1] xen security update
2015-03-10 20:40:17
[SECURITY] [DSA 3259-1] qemu security update
2015-05-13 16:07:57
[SECURITY] [DLA 479-1] xen security update
2016-05-17 23:13:35
suse
suse
Security update for Xen (important)
2015-03-27 10:04:56
Security update for xen (important)
2015-06-22 12:04:52
Security update for xen (important)
2015-05-21 09:04:52
fedora
fedora
[SECURITY] Fedora 22 Update: xen-4.5.0-6.fc22
2015-03-21 04:59:10
[SECURITY] Fedora 21 Update: xen-4.4.2-2.fc21
2015-04-11 09:04:58
[SECURITY] Fedora 21 Update: xen-4.4.2-3.fc21
2015-05-02 18:04:27
kaspersky
kaspersky
KLA10527 Multiple vulnerabilities in different versions of Xen
2015-04-01 00:00:00
huawei
huawei
Security Advisory - Xen Vulnerabilities on Huawei FusionSphere products
2015-04-10 00:00:00
prion
prion
Memory corruption
2015-03-12 14:59:00
Default credentials
2015-03-18 16:59:00
Design/Logic Flaw
2015-03-12 14:59:00
cve
cve
ubuntucve
ubuntucve
debiancve
debiancve
xen
xen
Information leak through version information hypercall
2015-03-05 12:00:00
Hypervisor memory corruption due to x86 emulator flaw
2015-03-10 12:00:00
HVM qemu unexpectedly enabling emulated VGA graphics backends
2015-03-12 12:00:00
freebsd
freebsd
xen-kernel -- Information leak through version information hypercall
2015-03-05 00:00:00
xen-kernel -- Hypervisor memory corruption due to x86 emulator flaw
2015-03-10 00:00:00
xen-kernel -- Information leak via internal x86 system device emulation
2015-03-05 00:00:00
redhat
redhat
(RHSA-2014:1670) Low: qemu-kvm-rhev security and bug fix update
2014-10-20 00:00:00
(RHSA-2014:1941) Low: qemu-kvm-rhev security update
2014-12-02 16:46:30
(RHSA-2014:1669) Low: qemu-kvm security and bug fix update
2014-10-20 00:00:00
oraclelinux
oraclelinux
qemu-kvm security and bug fix update
2014-10-20 00:00:00
kernel security update
2016-03-16 00:00:00
kernel security update
2016-03-15 00:00:00
centos
centos
libcacard, qemu security update
2014-10-21 17:21:12
kernel security update
2016-03-16 14:17:08
gentoo
gentoo
Xen: Multiple vulnerabilities
2015-04-11 00:00:00
QEMU: Multiple Vulnerabilities
2014-12-08 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:27:32
ubuntu
ubuntu
QEMU vulnerabilities
2015-05-13 00:00:00
QEMU vulnerabilities
2014-11-13 00:00:00
mageia
mageia
Updated xen packages fix security vulnerabilities
2016-03-07 14:20:30