SUSE Security Update: Security update for Xen
______________________________________________________________________________

Announcement ID:    SUSE-SU-2011:1057-1
Rating:             important
References:         #654798 #659070 #679344 #684297 #704380 #712038 
                    
Cross-References:   CVE-2011-1166 CVE-2011-1936 CVE-2011-2901
                   
Affected Products:
                    SUSE Linux Enterprise Server 10 SP3
                    SLE SDK 10 SP3
______________________________________________________________________________

   An update that solves three vulnerabilities and has three
   fixes is now available.

Description:


   This update fixes various bugs in XEN:

   The following security issues have been fixed:

   * A denial of service (Host Crash) in the XEN
   hypervisor. (CVE-2011-2901)
   * A bug was found in the way Xen handles CPUID
   instruction emulation during VM exits. An unprivileged
   guest user can potentially use this flaw to crash the
   guest. (CVE-2011-1936)
   * A 64-bit guest can get one of its vcpus into
   non-kernel mode without first providing a valid non-kernel
   pagetable. The observed failure mode was usually a hard
   lockup of the host (host denial of service). (CVE-2011-1166)

   It fixes also the following bugs:

   * bnc#654798 - SLES 10 SP3 XEN: Device /dev/xvdp is
   already connected error when starting multiple vm's
   * bnc#684297 - HVM taking too long to dump vmcore

   Security Issue references:

   * CVE-2011-2901
   
   * CVE-2011-1166
   
   * CVE-2011-1936
   

Indications:

   Please install this update.


Package List:

   - SUSE Linux Enterprise Server 10 SP3 (i586 x86_64):

      xen-3.2.3_17040_26-0.6.2.1
      xen-devel-3.2.3_17040_26-0.6.2.1
      xen-doc-html-3.2.3_17040_26-0.6.2.1
      xen-doc-pdf-3.2.3_17040_26-0.6.2.1
      xen-doc-ps-3.2.3_17040_26-0.6.2.1
      xen-kmp-debug-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-default-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-kdump-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-smp-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-libs-3.2.3_17040_26-0.6.2.1
      xen-tools-3.2.3_17040_26-0.6.2.1
      xen-tools-domU-3.2.3_17040_26-0.6.2.1
      xen-tools-ioemu-3.2.3_17040_26-0.6.2.1

   - SUSE Linux Enterprise Server 10 SP3 (x86_64):

      xen-libs-32bit-3.2.3_17040_26-0.6.2.1

   - SUSE Linux Enterprise Server 10 SP3 (i586):

      xen-kmp-bigsmp-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-kdumppae-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-vmi-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-vmipae-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1

   - SLE SDK 10 SP3 (i586 x86_64):

      xen-3.2.3_17040_26-0.6.2.1
      xen-devel-3.2.3_17040_26-0.6.2.1
      xen-kmp-debug-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-kdump-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-libs-3.2.3_17040_26-0.6.2.1
      xen-tools-3.2.3_17040_26-0.6.2.1
      xen-tools-ioemu-3.2.3_17040_26-0.6.2.1

   - SLE SDK 10 SP3 (x86_64):

      xen-libs-32bit-3.2.3_17040_26-0.6.2.1


References:

   https://www.suse.com/security/cve/CVE-2011-1166.html
   https://www.suse.com/security/cve/CVE-2011-1936.html
   https://www.suse.com/security/cve/CVE-2011-2901.html
   https://bugzilla.novell.com/654798
   https://bugzilla.novell.com/659070
   https://bugzilla.novell.com/679344
   https://bugzilla.novell.com/684297
   https://bugzilla.novell.com/704380
   https://bugzilla.novell.com/712038
   https://login.microfocus.com/nidp/app/login

SuSE: 2011:1057-1: important: Xen

September 20, 2011
An update that solves three vulnerabilities and has three An update that solves three vulnerabilities and has three An update that solves three vulnerabilities and has three fixes ...

Summary

   SUSE Security Update: Security update for Xen
______________________________________________________________________________

Announcement ID:    SUSE-SU-2011:1057-1
Rating:             important
References:         #654798 #659070 #679344 #684297 #704380 #712038 
                    
Cross-References:   CVE-2011-1166 CVE-2011-1936 CVE-2011-2901
                   
Affected Products:
                    SUSE Linux Enterprise Server 10 SP3
                    SLE SDK 10 SP3
______________________________________________________________________________

   An update that solves three vulnerabilities and has three
   fixes is now available.

Description:


   This update fixes various bugs in XEN:

   The following security issues have been fixed:

   * A denial of service (Host Crash) in the XEN
   hypervisor. (CVE-2011-2901)
   * A bug was found in the way Xen handles CPUID
   instruction emulation during VM exits. An unprivileged
   guest user can potentially use this flaw to crash the
   guest. (CVE-2011-1936)
   * A 64-bit guest can get one of its vcpus into
   non-kernel mode without first providing a valid non-kernel
   pagetable. The observed failure mode was usually a hard
   lockup of the host (host denial of service). (CVE-2011-1166)

   It fixes also the following bugs:

   * bnc#654798 - SLES 10 SP3 XEN: Device /dev/xvdp is
   already connected error when starting multiple vm's
   * bnc#684297 - HVM taking too long to dump vmcore

   Security Issue references:

   * CVE-2011-2901
   
   * CVE-2011-1166
   
   * CVE-2011-1936
   

Indications:

   Please install this update.


Package List:

   - SUSE Linux Enterprise Server 10 SP3 (i586 x86_64):

      xen-3.2.3_17040_26-0.6.2.1
      xen-devel-3.2.3_17040_26-0.6.2.1
      xen-doc-html-3.2.3_17040_26-0.6.2.1
      xen-doc-pdf-3.2.3_17040_26-0.6.2.1
      xen-doc-ps-3.2.3_17040_26-0.6.2.1
      xen-kmp-debug-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-default-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-kdump-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-smp-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-libs-3.2.3_17040_26-0.6.2.1
      xen-tools-3.2.3_17040_26-0.6.2.1
      xen-tools-domU-3.2.3_17040_26-0.6.2.1
      xen-tools-ioemu-3.2.3_17040_26-0.6.2.1

   - SUSE Linux Enterprise Server 10 SP3 (x86_64):

      xen-libs-32bit-3.2.3_17040_26-0.6.2.1

   - SUSE Linux Enterprise Server 10 SP3 (i586):

      xen-kmp-bigsmp-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-kdumppae-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-vmi-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-vmipae-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1

   - SLE SDK 10 SP3 (i586 x86_64):

      xen-3.2.3_17040_26-0.6.2.1
      xen-devel-3.2.3_17040_26-0.6.2.1
      xen-kmp-debug-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-kmp-kdump-3.2.3_17040_26_2.6.16.60_0.81.11-0.6.2.1
      xen-libs-3.2.3_17040_26-0.6.2.1
      xen-tools-3.2.3_17040_26-0.6.2.1
      xen-tools-ioemu-3.2.3_17040_26-0.6.2.1

   - SLE SDK 10 SP3 (x86_64):

      xen-libs-32bit-3.2.3_17040_26-0.6.2.1


References:

   https://www.suse.com/security/cve/CVE-2011-1166.html
   https://www.suse.com/security/cve/CVE-2011-1936.html
   https://www.suse.com/security/cve/CVE-2011-2901.html
   https://bugzilla.novell.com/654798
   https://bugzilla.novell.com/659070
   https://bugzilla.novell.com/679344
   https://bugzilla.novell.com/684297
   https://bugzilla.novell.com/704380
   https://bugzilla.novell.com/712038
   https://login.microfocus.com/nidp/app/login

References

Severity

Related News

11.Locks IsometricPattern Esm H320
2 - 3 min read
The Kinsing hacker group, or H2Miner, has been orchestrating illicit cryptocurrency mining campaigns since 2019 and poses a persistent security
32.Lock Code Circular Esm H320
2 - 3 min read
The Kimsuky APT group, reportedly linked to North Korea's Reconnaissance General Bureau (RGB), has been identified deploying a Linux version of its
4.Lock AbstractDigital Esm H320
2 - 3 min read
Recent research sheds light on the security vulnerabilities prevalent in Linux vendor kernels due to flawed engineering processes that backport
28.Lock Globe Esm H320
1 - 2 min read
The intersection of Linux and quantum computing has become increasingly apparent, emphasizing the importance of Linux-based operating systems in
6.EmailConnection Touch Esm H320
2 - 3 min read
Recent security updates for Ubuntu and Debian have been released to address vulnerabilities in Thunderbird, the popular open-source mail and
30.Lock Globe Motherboard Esm H320
1 - 2 min read
As cybersecurity practitioners, we are no strangers to the constant threat of malicious actors and the importance of remaining vigilant to protect
22.Lock ScreenEffect Esm H320
1 - 2 min read
EndeavorOS Gemini is a captivating and charming desktop operating system based on Arch Linux. The new release includes a kernel upgrade, 3D graphics
25.@Sign Hook Keyboard Esm H320
1 min read
Cyber risk is increasing for individuals and organizations, making flexible and robust solutions for identifying spam and malware increasingly

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved