Security update for Xen (important)

2011-09-2023:08:20

lists.opensuse.org

0.001 Low

EPSS

Percentile

35.6%

JSON

This update fixes various bugs in XEN:

The following security issues have been fixed:

A denial of service (Host Crash) in the XEN
hypervisor. (CVE-2011-2901)
A bug was found in the way Xen handles CPUID
instruction emulation during VM exits. An unprivileged
guest user can potentially use this flaw to crash the
guest. (CVE-2011-1936)
A 64-bit guest can get one of its vcpus into
non-kernel mode without first providing a valid non-kernel
pagetable. The observed failure mode was usually a hard
lockup of the host (host denial of service). (CVE-2011-1166)

It fixes also the following bugs:

bnc#654798 - SLES 10 SP3 XEN: Device /dev/xvdp is
already connected error when starting multiple vm’s
bnc#684297 - HVM taking too long to dump vmcore

OSVersionArchitecturePackageVersionFilename
SUSE Linux Enterprise Server10.3i586xen-devel< 3.2.3_17040_26-0.6.2.1xen-devel-3.2.3_17040_26-0.6.2.1.i586.rpm
SUSE Linux Enterprise Server10.3i586xen< 3.2.3_17040_26-0.6.2.1xen-3.2.3_17040_26-0.6.2.1.i586.rpm
SLE SDK10.3i586xen< 3.2.3_17040_26-0.6.2.1xen-3.2.3_17040_26-0.6.2.1.i586.rpm
SLE SDK10.3x86_64xen-tools-ioemu< 3.2.3_17040_26-0.6.2.1xen-tools-ioemu-3.2.3_17040_26-0.6.2.1.x86_64.rpm
SUSE Linux Enterprise Server10.3x86_64xen-devel< 3.2.3_17040_26-0.6.2.1xen-devel-3.2.3_17040_26-0.6.2.1.x86_64.rpm
SUSE Linux Enterprise Server10.3i586xen-kmp-smp< 3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1xen-kmp-smp-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1.i586.rpm
SUSE Linux Enterprise Server10.3x86_64xen-kmp-debug< 3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1xen-kmp-debug-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1.x86_64.rpm
SLE SDK10.3x86_64xen< 3.2.3_17040_26-0.6.2.1xen-3.2.3_17040_26-0.6.2.1.x86_64.rpm
SUSE Linux Enterprise Server10.3i586xen-doc-pdf< 3.2.3_17040_26-0.6.2.1xen-doc-pdf-3.2.3_17040_26-0.6.2.1.i586.rpm
SUSE Linux Enterprise Server10.3i586xen-kmp-kdumppae< 3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1xen-kmp-kdumppae-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1.i586.rpm

OS	Version	Architecture	Package	Version	Filename
SUSE Linux Enterprise Server	10.3	i586	xen-devel	< 3.2.3_17040_26-0.6.2.1	xen-devel-3.2.3_17040_26-0.6.2.1.i586.rpm
SUSE Linux Enterprise Server	10.3	i586	xen	< 3.2.3_17040_26-0.6.2.1	xen-3.2.3_17040_26-0.6.2.1.i586.rpm
SLE SDK	10.3	i586	xen	< 3.2.3_17040_26-0.6.2.1	xen-3.2.3_17040_26-0.6.2.1.i586.rpm
SLE SDK	10.3	x86_64	xen-tools-ioemu	< 3.2.3_17040_26-0.6.2.1	xen-tools-ioemu-3.2.3_17040_26-0.6.2.1.x86_64.rpm
SUSE Linux Enterprise Server	10.3	x86_64	xen-devel	< 3.2.3_17040_26-0.6.2.1	xen-devel-3.2.3_17040_26-0.6.2.1.x86_64.rpm
SUSE Linux Enterprise Server	10.3	i586	xen-kmp-smp	< 3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1	xen-kmp-smp-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1.i586.rpm
SUSE Linux Enterprise Server	10.3	x86_64	xen-kmp-debug	< 3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1	xen-kmp-debug-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1.x86_64.rpm
SLE SDK	10.3	x86_64	xen	< 3.2.3_17040_26-0.6.2.1	xen-3.2.3_17040_26-0.6.2.1.x86_64.rpm
SUSE Linux Enterprise Server	10.3	i586	xen-doc-pdf	< 3.2.3_17040_26-0.6.2.1	xen-doc-pdf-3.2.3_17040_26-0.6.2.1.i586.rpm
SUSE Linux Enterprise Server	10.3	i586	xen-kmp-kdumppae	< 3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1	xen-kmp-kdumppae-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1.i586.rpm