SUSE Security Update: Security update for Xen
______________________________________________________________________________

Announcement ID:    SUSE-SU-2011:0942-1
Rating:             important
References:         #582265 #670465 #684297 #684305 #689954 #692625 
                    #693472 #702025 #703924 #704160 #706574 
Cross-References:   CVE-2011-1898
Affected Products:
                    SUSE Linux Enterprise Software Development Kit 11 SP1
                    SUSE Linux Enterprise Server 11 SP1
                    SUSE Linux Enterprise Desktop 11 SP1
______________________________________________________________________________

   An update that solves one vulnerability and has 10 fixes is
   now available. It includes one version update.

Description:


   Security / Collective Update for Xen

   Xen:

   * bnc#702025 - VUL-0: xen: VT-d (PCI passthrough) MSI
   trap injection (CVE-2011-1898)
   * bnc#703924 - update block-npiv scripts to support BFA
   HBA
   * bnc#689954 - L3: Live migrations fail when guest
   crashes: domain_crash_sync called from entry.S
   * bnc#693472 - Bridge hangs cause redundant ring
   failures in SLE 11 SP1 HAE + XEN
   * bnc#582265 - xen-scsi.ko not supported
   * bnc#670465 - When connecting to Xen guest through
   vncviewer mouse tracking is off.
   * bnc#684305 - on_crash is being ignored with kdump now
   working in HVM
   * bnc#684297 - HVM taking too long to dump vmcore
   * bnc#704160 - crm resource migrate fails with xen
   machines
   * bnc#706574 - xm console DomUName hang after "xm
   save/restore" of PVM on the latest Xen

   vm-install:

   * bnc#692625 - virt-manager has problems to install
   guest from multiple CD

   Security Issue reference:

   * CVE-2011-1898
   

Indications:

   Please install the update.

Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Software Development Kit 11 SP1:

      zypper in -t patch sdksp1-xen-201107-4977

   - SUSE Linux Enterprise Server 11 SP1:

      zypper in -t patch slessp1-xen-201107-4977

   - SUSE Linux Enterprise Desktop 11 SP1:

      zypper in -t patch sledsp1-xen-201107-4977

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE Linux Enterprise Software Development Kit 11 SP1 (i586 x86_64):

      xen-devel-4.0.2_21511_02-0.7.1

   - SUSE Linux Enterprise Server 11 SP1 (i586 x86_64) [New Version: 0.4.31]:

      vm-install-0.4.31-0.3.5
      xen-4.0.2_21511_02-0.7.1
      xen-doc-html-4.0.2_21511_02-0.7.1
      xen-doc-pdf-4.0.2_21511_02-0.7.1
      xen-kmp-default-4.0.2_21511_02_2.6.32.43_0.4-0.7.1
      xen-libs-4.0.2_21511_02-0.7.1
      xen-tools-4.0.2_21511_02-0.7.1
      xen-tools-domU-4.0.2_21511_02-0.7.1

   - SUSE Linux Enterprise Server 11 SP1 (i586):

      xen-kmp-pae-4.0.2_21511_02_2.6.32.43_0.4-0.7.1

   - SUSE Linux Enterprise Desktop 11 SP1 (i586 x86_64) [New Version: 0.4.31]:

      vm-install-0.4.31-0.3.5
      xen-4.0.2_21511_02-0.7.1
      xen-kmp-default-4.0.2_21511_02_2.6.32.43_0.4-0.7.1
      xen-libs-4.0.2_21511_02-0.7.1
      xen-tools-4.0.2_21511_02-0.7.1
      xen-tools-domU-4.0.2_21511_02-0.7.1

   - SUSE Linux Enterprise Desktop 11 SP1 (i586):

      xen-kmp-pae-4.0.2_21511_02_2.6.32.43_0.4-0.7.1


References:

   https://www.suse.com/security/cve/CVE-2011-1898.html
   https://bugzilla.novell.com/582265
   https://bugzilla.novell.com/670465
   https://bugzilla.novell.com/684297
   https://bugzilla.novell.com/684305
   https://bugzilla.novell.com/689954
   https://bugzilla.novell.com/692625
   https://bugzilla.novell.com/693472
   https://bugzilla.novell.com/702025
   https://bugzilla.novell.com/703924
   https://bugzilla.novell.com/704160
   https://bugzilla.novell.com/706574
   https://login.microfocus.com/nidp/app/login

SuSE: 2011:0942-1: important: Xen

August 24, 2011
An update that solves one vulnerability and has 10 fixes is An update that solves one vulnerability and has 10 fixes is An update that solves one vulnerability and has 10 fixes is ...

Summary

   SUSE Security Update: Security update for Xen
______________________________________________________________________________

Announcement ID:    SUSE-SU-2011:0942-1
Rating:             important
References:         #582265 #670465 #684297 #684305 #689954 #692625 
                    #693472 #702025 #703924 #704160 #706574 
Cross-References:   CVE-2011-1898
Affected Products:
                    SUSE Linux Enterprise Software Development Kit 11 SP1
                    SUSE Linux Enterprise Server 11 SP1
                    SUSE Linux Enterprise Desktop 11 SP1
______________________________________________________________________________

   An update that solves one vulnerability and has 10 fixes is
   now available. It includes one version update.

Description:


   Security / Collective Update for Xen

   Xen:

   * bnc#702025 - VUL-0: xen: VT-d (PCI passthrough) MSI
   trap injection (CVE-2011-1898)
   * bnc#703924 - update block-npiv scripts to support BFA
   HBA
   * bnc#689954 - L3: Live migrations fail when guest
   crashes: domain_crash_sync called from entry.S
   * bnc#693472 - Bridge hangs cause redundant ring
   failures in SLE 11 SP1 HAE + XEN
   * bnc#582265 - xen-scsi.ko not supported
   * bnc#670465 - When connecting to Xen guest through
   vncviewer mouse tracking is off.
   * bnc#684305 - on_crash is being ignored with kdump now
   working in HVM
   * bnc#684297 - HVM taking too long to dump vmcore
   * bnc#704160 - crm resource migrate fails with xen
   machines
   * bnc#706574 - xm console DomUName hang after "xm
   save/restore" of PVM on the latest Xen

   vm-install:

   * bnc#692625 - virt-manager has problems to install
   guest from multiple CD

   Security Issue reference:

   * CVE-2011-1898
   

Indications:

   Please install the update.

Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Software Development Kit 11 SP1:

      zypper in -t patch sdksp1-xen-201107-4977

   - SUSE Linux Enterprise Server 11 SP1:

      zypper in -t patch slessp1-xen-201107-4977

   - SUSE Linux Enterprise Desktop 11 SP1:

      zypper in -t patch sledsp1-xen-201107-4977

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE Linux Enterprise Software Development Kit 11 SP1 (i586 x86_64):

      xen-devel-4.0.2_21511_02-0.7.1

   - SUSE Linux Enterprise Server 11 SP1 (i586 x86_64) [New Version: 0.4.31]:

      vm-install-0.4.31-0.3.5
      xen-4.0.2_21511_02-0.7.1
      xen-doc-html-4.0.2_21511_02-0.7.1
      xen-doc-pdf-4.0.2_21511_02-0.7.1
      xen-kmp-default-4.0.2_21511_02_2.6.32.43_0.4-0.7.1
      xen-libs-4.0.2_21511_02-0.7.1
      xen-tools-4.0.2_21511_02-0.7.1
      xen-tools-domU-4.0.2_21511_02-0.7.1

   - SUSE Linux Enterprise Server 11 SP1 (i586):

      xen-kmp-pae-4.0.2_21511_02_2.6.32.43_0.4-0.7.1

   - SUSE Linux Enterprise Desktop 11 SP1 (i586 x86_64) [New Version: 0.4.31]:

      vm-install-0.4.31-0.3.5
      xen-4.0.2_21511_02-0.7.1
      xen-kmp-default-4.0.2_21511_02_2.6.32.43_0.4-0.7.1
      xen-libs-4.0.2_21511_02-0.7.1
      xen-tools-4.0.2_21511_02-0.7.1
      xen-tools-domU-4.0.2_21511_02-0.7.1

   - SUSE Linux Enterprise Desktop 11 SP1 (i586):

      xen-kmp-pae-4.0.2_21511_02_2.6.32.43_0.4-0.7.1


References:

   https://www.suse.com/security/cve/CVE-2011-1898.html
   https://bugzilla.novell.com/582265
   https://bugzilla.novell.com/670465
   https://bugzilla.novell.com/684297
   https://bugzilla.novell.com/684305
   https://bugzilla.novell.com/689954
   https://bugzilla.novell.com/692625
   https://bugzilla.novell.com/693472
   https://bugzilla.novell.com/702025
   https://bugzilla.novell.com/703924
   https://bugzilla.novell.com/704160
   https://bugzilla.novell.com/706574
   https://login.microfocus.com/nidp/app/login

References

Severity

Related News

4.Lock AbstractDigital Esm H320
2 - 3 min read
Recent research sheds light on the security vulnerabilities prevalent in Linux vendor kernels due to flawed engineering processes that backport
28.Lock Globe Esm H320
1 - 2 min read
The intersection of Linux and quantum computing has become increasingly apparent, emphasizing the importance of Linux-based operating systems in
6.EmailConnection Touch Esm H320
2 - 3 min read
Recent security updates for Ubuntu and Debian have been released to address vulnerabilities in Thunderbird, the popular open-source mail and
30.Lock Globe Motherboard Esm H320
1 - 2 min read
As cybersecurity practitioners, we are no strangers to the constant threat of malicious actors and the importance of remaining vigilant to protect
22.Lock ScreenEffect Esm H320
1 - 2 min read
EndeavorOS Gemini is a captivating and charming desktop operating system based on Arch Linux. The new release includes a kernel upgrade, 3D graphics
25.@Sign Hook Keyboard Esm H320
1 min read
Cyber risk is increasing for individuals and organizations, making flexible and robust solutions for identifying spam and malware increasingly
19.Laptop Bed Esm H320
2 - 3 min read
The recently released Linux Kernel 6.9 brings forth a blend of crucial upgrades and enhancements, catering to the ever-evolving needs of the Linux
4.Lock AbstractDigital Esm H320
1 - 2 min read
Nmap 7.95 introduces myriad enhancements, primarily focusing on OS and service detection signatures. This reflects the dedication of the Nmap

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved