Security update for Xen (important)

2013-08-0916:04:13

lists.opensuse.org

0.001 Low

EPSS

Percentile

27.3%

JSON

The Xen hypervisor and toolset has been updated to 4.2.2_06
to fix various bugs and security issues:

The following security issues have been addressed:

CVE-2013-2194: Various integer overflows in the ELF
loader were fixed. (XSA-55)
CVE-2013-2195: Various pointer dereferences issues in
the ELF loader were fixed. (XSA-55)
CVE-2013-2196: Various other problems in the ELF
loader were fixed. (XSA-55)
CVE-2013-2078: A Hypervisor crash due to missing
exception recovery on XSETBV was fixed. (XSA-54)
CVE-2013-2077: A Hypervisor crash due to missing
exception recovery on XRSTOR was fixed. (XSA-53)
CVE-2013-2211: libxl allowed guest write access to
sensitive console related xenstore keys. (XSA-57)
CVE-2013-2076: An information leak on XSAVE/XRSTOR
capable AMD CPUs (XSA-52) was fixed, where parts of this
state could leak to other VMs.

Also the following bugs have been fixed:

performance issues in mirror lvm (bnc#801663)
aacraid driver panics mapping INT A when booting
kernel-xen (bnc#808085)
Fully Virtualized Windows VM install failed on Ivy
Bridge platforms with Xen kernel (bnc#808269)
Did not boot with i915 graphics controller with VT-d
enabled (bnc#817210)

OSVersionArchitecturePackageVersionFilename
SUSE Linux Enterprise Software Development Kit11.3x86_64xen-devel< 4.2.2_06-0.7.1xen-devel-4.2.2_06-0.7.1.x86_64.rpm
SUSE Linux Enterprise Server11.3i586xen-kmp-pae< 4.2.2_06_3.0.82_0.7-0.7.1xen-kmp-pae-4.2.2_06_3.0.82_0.7-0.7.1.i586.rpm
SUSE Linux Enterprise Server11.3x86_64xen< 4.2.2_06-0.7.1xen-4.2.2_06-0.7.1.x86_64.rpm
SUSE Linux Enterprise Server11.3i586xen-tools-domu< 4.2.2_06-0.7.1xen-tools-domU-4.2.2_06-0.7.1.i586.rpm
SUSE Linux Enterprise Desktop11.3x86_64xen-tools-domu< 4.2.2_06-0.7.1xen-tools-domU-4.2.2_06-0.7.1.x86_64.rpm
SUSE Linux Enterprise Server11.3x86_64xen-tools< 4.2.2_06-0.7.1xen-tools-4.2.2_06-0.7.1.x86_64.rpm
SUSE Linux Enterprise Desktop11.3i586xen-libs< 4.2.2_06-0.7.1xen-libs-4.2.2_06-0.7.1.i586.rpm
SUSE Linux Enterprise Desktop11.3x86_64xen-kmp-default< 4.2.2_06_3.0.82_0.7-0.7.1xen-kmp-default-4.2.2_06_3.0.82_0.7-0.7.1.x86_64.rpm
SUSE Linux Enterprise Server11.3x86_64xen-libs-32bit< 4.2.2_06-0.7.1xen-libs-32bit-4.2.2_06-0.7.1.x86_64.rpm
SUSE Linux Enterprise Desktop11.3x86_64xen-libs-32bit< 4.2.2_06-0.7.1xen-libs-32bit-4.2.2_06-0.7.1.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
SUSE Linux Enterprise Software Development Kit	11.3	x86_64	xen-devel	< 4.2.2_06-0.7.1	xen-devel-4.2.2_06-0.7.1.x86_64.rpm
SUSE Linux Enterprise Server	11.3	i586	xen-kmp-pae	< 4.2.2_06_3.0.82_0.7-0.7.1	xen-kmp-pae-4.2.2_06_3.0.82_0.7-0.7.1.i586.rpm
SUSE Linux Enterprise Server	11.3	x86_64	xen	< 4.2.2_06-0.7.1	xen-4.2.2_06-0.7.1.x86_64.rpm
SUSE Linux Enterprise Server	11.3	i586	xen-tools-domu	< 4.2.2_06-0.7.1	xen-tools-domU-4.2.2_06-0.7.1.i586.rpm
SUSE Linux Enterprise Desktop	11.3	x86_64	xen-tools-domu	< 4.2.2_06-0.7.1	xen-tools-domU-4.2.2_06-0.7.1.x86_64.rpm
SUSE Linux Enterprise Server	11.3	x86_64	xen-tools	< 4.2.2_06-0.7.1	xen-tools-4.2.2_06-0.7.1.x86_64.rpm
SUSE Linux Enterprise Desktop	11.3	i586	xen-libs	< 4.2.2_06-0.7.1	xen-libs-4.2.2_06-0.7.1.i586.rpm
SUSE Linux Enterprise Desktop	11.3	x86_64	xen-kmp-default	< 4.2.2_06_3.0.82_0.7-0.7.1	xen-kmp-default-4.2.2_06_3.0.82_0.7-0.7.1.x86_64.rpm
SUSE Linux Enterprise Server	11.3	x86_64	xen-libs-32bit	< 4.2.2_06-0.7.1	xen-libs-32bit-4.2.2_06-0.7.1.x86_64.rpm
SUSE Linux Enterprise Desktop	11.3	x86_64	xen-libs-32bit	< 4.2.2_06-0.7.1	xen-libs-32bit-4.2.2_06-0.7.1.x86_64.rpm