Security update for xen (important)

2015-06-1117:05:28

lists.opensuse.org

0.051 Low

EPSS

Percentile

92.1%

JSON

Xen was updated to fix seven security issues and one non-security bug.

The following vulnerabilities were fixed:

CVE-2015-4103: Potential unintended writes to host MSI message data
field via qemu (XSA-128) (bnc#931625)
CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests
(XSA-129) (bnc#931626)
CVE-2015-4105: Guest triggerable qemu MSI-X pass-through error messages
(XSA-130) (bnc#931627)
CVE-2015-4106: Unmediated PCI register access in qemu (XSA-131)
(bnc#931628)
CVE-2015-4163: GNTTABOP_swap_grant_ref operation misbehavior (XSA-134)
(bnc#932790)
CVE-2015-3209: heap overflow in qemu pcnet controller allowing guest to
host escape (XSA-135) (bnc#932770)
CVE-2015-4164: DoS through iret hypercall handler (XSA-136) (bnc#932996)

The following non-security bug was fixed:

bnc#906689: let systemd schedule xencommons after network-online.target
and remote-fs.target so that xendomains has access to remote shares

OSVersionArchitecturePackageVersionFilename
SUSE Linux Enterprise Server12x86_64xen-tools-debuginfo< 4.4.2_06-21.1xen-tools-debuginfo-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Desktop12x86_64xen-debugsource< 4.4.2_06-21.1xen-debugsource-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Server12x86_64xen-libs-debuginfo< 4.4.2_06-21.1xen-libs-debuginfo-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Desktop12x86_64xen< 4.4.2_06-21.1xen-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Server12x86_64xen-tools-domu-debuginfo< 4.4.2_06-21.1xen-tools-domU-debuginfo-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Desktop12x86_64xen-libs-debuginfo< 4.4.2_06-21.1xen-libs-debuginfo-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Server12x86_64xen-kmp-default< 4.4.2_06_k3.12.39_47-21.1xen-kmp-default-4.4.2_06_k3.12.39_47-21.1.x86_64.rpm
SUSE Linux Enterprise Server12x86_64xen-kmp-default-debuginfo< 4.4.2_06_k3.12.39_47-21.1xen-kmp-default-debuginfo-4.4.2_06_k3.12.39_47-21.1.x86_64.rpm
SUSE Linux Enterprise Server12x86_64xen-tools< 4.4.2_06-21.1xen-tools-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Server12x86_64xen-tools-domu< 4.4.2_06-21.1xen-tools-domU-4.4.2_06-21.1.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
SUSE Linux Enterprise Server	12	x86_64	xen-tools-debuginfo	< 4.4.2_06-21.1	xen-tools-debuginfo-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Desktop	12	x86_64	xen-debugsource	< 4.4.2_06-21.1	xen-debugsource-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Server	12	x86_64	xen-libs-debuginfo	< 4.4.2_06-21.1	xen-libs-debuginfo-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Desktop	12	x86_64	xen	< 4.4.2_06-21.1	xen-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Server	12	x86_64	xen-tools-domu-debuginfo	< 4.4.2_06-21.1	xen-tools-domU-debuginfo-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Desktop	12	x86_64	xen-libs-debuginfo	< 4.4.2_06-21.1	xen-libs-debuginfo-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Server	12	x86_64	xen-kmp-default	< 4.4.2_06_k3.12.39_47-21.1	xen-kmp-default-4.4.2_06_k3.12.39_47-21.1.x86_64.rpm
SUSE Linux Enterprise Server	12	x86_64	xen-kmp-default-debuginfo	< 4.4.2_06_k3.12.39_47-21.1	xen-kmp-default-debuginfo-4.4.2_06_k3.12.39_47-21.1.x86_64.rpm
SUSE Linux Enterprise Server	12	x86_64	xen-tools	< 4.4.2_06-21.1	xen-tools-4.4.2_06-21.1.x86_64.rpm
SUSE Linux Enterprise Server	12	x86_64	xen-tools-domu	< 4.4.2_06-21.1	xen-tools-domU-4.4.2_06-21.1.x86_64.rpm