Lucene search
SuseOPENSUSE-SU-2018:2211-1HistoryAug 06, 2018 - 3:12 p.m.
Security update for xen (moderate)
2018-08-0615:12:23
lists.opensuse.org
67
0.015 Low
EPSS
Percentile
85.3%
This update for xen fixes the following issues:
Security issues fixed:
- CVE-2018-3665: Fix Lazy FP Save/Restore issue (XSA-267) (bsc#1095242).
- CVE-2018-12891: Fix possible Denial of Service (DoS) via certain PV MMU
operations that affect the entire host (XSA-264) (bsc#1097521). - CVE-2018-12892: Fix libxl to honour the readonly flag on HVM emulated
SCSI disks (XSA-266) (bsc#1097523). - CVE-2018-12893: Fix crash/Denial of Service (DoS) via safety check
(XSA-265) (bsc#1097522). - CVE-2018-11806: Fix heap buffer overflow while reassembling fragmented
datagrams (bsc#1096224).
Bug fixes:
- bsc#1027519: Add upstream patches from January.
- bsc#1087289: Fix xen scheduler crash.
This update was imported from the SUSE:SLE-12-SP3:Update update project.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 42.3 | x86_64 | xen-libs | < 4.9.2_08-25.2 | xen-libs-4.9.2_08-25.2.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | xen-libs-debuginfo | < 4.9.2_08-25.2 | xen-libs-debuginfo-4.9.2_08-25.2.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | xen-tools-domu | < 4.9.2_08-25.2 | xen-tools-domU-4.9.2_08-25.2.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | xen-debugsource | < 4.9.2_08-25.2 | xen-debugsource-4.9.2_08-25.2.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | xen | < 4.9.2_08-25.2 | xen-4.9.2_08-25.2.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | xen-tools-debuginfo | < 4.9.2_08-25.2 | xen-tools-debuginfo-4.9.2_08-25.2.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | xen-tools | < 4.9.2_08-25.2 | xen-tools-4.9.2_08-25.2.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | xen-tools-domu-debuginfo | < 4.9.2_08-25.2 | xen-tools-domU-debuginfo-4.9.2_08-25.2.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | xen-doc-html | < 4.9.2_08-25.2 | xen-doc-html-4.9.2_08-25.2.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | xen-devel | < 4.9.2_08-25.2 | xen-devel-4.9.2_08-25.2.x86_64.rpm |
Related
nessus
nessus
SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2018:2059-1)
2018-07-26 00:00:00
SUSE SLES12 Security Update : xen (SUSE-SU-2018:2081-2)
2018-10-22 00:00:00
SUSE SLES12 Security Update : xen (SUSE-SU-2018:2081-1)
2018-07-30 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:2059-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2081-2)
2021-04-19 00:00:00
openSUSE: Security Advisory for xen (openSUSE-SU-2018:2211-1)
2018-08-07 00:00:00
suse
suse
Security update for xen (important)
2018-07-28 15:07:34
debian
debian
[SECURITY] [DSA 4236-1] xen security update
2018-06-27 21:20:30
[SECURITY] [DSA 4232-1] xen security update
2018-06-20 07:02:39
[SECURITY] [DLA 1577-1] xen security update
2018-11-12 13:09:39
osv
osv
xen - security update
2018-06-27 00:00:00
CVE-2018-12892
2018-07-02 17:29:00
CVE-2018-12891
2018-07-02 17:29:00
citrix
citrix
Citrix XenServer Multiple Security Updates
2018-06-28 04:00:00
CVE-2018-3665 - Citrix XenServer Security Update
2018-06-15 04:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: xen-4.10.1-5.fc28
2018-07-03 16:56:43
[SECURITY] Fedora 28 Update: xen-4.10.1-6.fc28
2018-08-30 04:57:39
[SECURITY] Fedora 28 Update: xen-4.10.2-2.fc28
2018-11-11 03:12:54
redhatcve
redhatcve
prion
prion
Design/Logic Flaw
2018-07-02 17:29:00
Design/Logic Flaw
2018-07-02 17:29:00
Hardcoded credentials
2018-07-02 17:29:00
xen
xen
libxl fails to honour readonly flag on HVM emulated SCSI disks
2018-06-27 20:06:00
preemption checks bypassed in x86 PV MM handling
2018-06-27 20:06:00
x86: #DB exception safety check can be triggered by a guest
2018-06-27 20:06:00
debiancve
debiancve
ubuntucve
ubuntucve
cve
cve
redhat
redhat
(RHSA-2018:2822) Important: qemu-kvm-rhev security update
2018-09-27 18:00:00
(RHSA-2018:2762) Important: qemu-kvm-ma security update
2018-09-25 17:29:48
(RHSA-2018:2887) Important: qemu-kvm-rhev security update
2018-10-09 10:53:35
zdi
zdi
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:26:12
Information Disclosure
2019-01-15 09:23:51
f5
f5
K51428664 : QEMU vulnerability CVE-2018-11806
2020-12-31 00:00:00
K21344224 : Lazy FP state restore vulnerability CVE-2018-3665
2018-06-21 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2018-06-15 00:00:00
kernel security update
2018-06-14 00:00:00
mskb
mskb
freebsd_advisory
freebsd_advisory
FreeBSD-SA-18:07.lazyfpu
2018-06-21 00:00:00
kaspersky
kaspersky
KLA11891 Microsoft Advisory for Microsoft Products (ESU)
2018-06-13 00:00:00
centos
centos
kernel, perf, python security update
2018-06-16 10:49:53
lenovo
lenovo
Lazy FP State Restore - Lenovo Support NL
2018-12-13 11:22:07
Lazy FP State Restore - US
2018-12-13 11:22:07
mscve
mscve
Microsoft Guidance for Lazy FP State Restore
2018-06-13 07:00:00
paloalto
paloalto
Information Disclosure in WildFire Appliance (WF-500)
2019-07-08 22:15:00
intel
intel
Lazy FP State Restore
2018-06-13 00:00:00
thn
thn
New 'Lazy FP State Restore' Vulnerability Found in All Modern Intel CPUs
2018-06-14 07:59:00
freebsd
freebsd
FreeBSD -- Lazy FPU State Restore Information Disclosure
2018-06-21 00:00:00