Oval Definition:oval:org.opensuse.security:def:66163
Revision Date:2020-12-01Version:1
Title:Security update for xen (Important)
Description:

This update for xen fixes the following issues:

- CVE-2020-25602: Fixed an issue where there was a crash when handling guest access to MSR_MISC_ENABLE was thrown (bsc#1176339,XSA-333) - CVE-2020-25598: Added a missing unlock in XENMEM_acquire_resource error path (bsc#1176341,XSA-334) - CVE-2020-25604: Fixed a race condition when migrating timers between x86 HVM vCPU-s (bsc#1176343,XSA-336) - CVE-2020-25595: Fixed an issue where PCI passthrough code was reading back hardware registers (bsc#1176344,XSA-337) - CVE-2020-25597: Fixed an issue where a valid event channels may not turn invalid (bsc#1176346,XSA-338) - CVE-2020-25596: Fixed a potential denial of service in x86 pv guest kernel via SYSENTER (bsc#1176345,XSA-339) - CVE-2020-25603: Fixed an issue due to missing barriers when accessing/allocating an event channel (bsc#1176347,XSA-340) - CVE-2020-25600: Fixed out of bounds event channels available to 32-bit x86 domains (bsc#1176348,XSA-342) - CVE-2020-25599: Fixed race conditions with evtchn_reset() (bsc#1176349,XSA-343) - CVE-2020-25601: Fixed an issue due to lack of preemption in evtchn_reset() / evtchn_destroy() (bsc#1176350,XSA-344)

- Various bug fixes (bsc#1027519)
Family:unixClass:patch
Status:Reference(s):1027519
1055014
1061843
1065600
1065729
1066382
1077428
1112178
1131277
1134760
1170415
1171558
1173432
1174748
1176339
1176341
1176343
1176344
1176345
1176346
1176347
1176348
1176349
1176350
1176354
1176485
1176560
1176713
1176723
1177086
1177101
1177271
1177281
1177410
1177411
1177470
1177687
1177719
1177740
1177749
1177750
1177753
1177754
1177755
1177766
1177855
1177856
1177861
1178003
1178027
1178166
1178185
1178187
1178188
1178202
1178234
1178330
CVE-2020-0430
CVE-2020-14351
CVE-2020-16120
CVE-2020-25285
CVE-2020-25595
CVE-2020-25596
CVE-2020-25597
CVE-2020-25598
CVE-2020-25599
CVE-2020-25600
CVE-2020-25601
CVE-2020-25602
CVE-2020-25603
CVE-2020-25604
CVE-2020-25656
CVE-2020-27673
CVE-2020-27675
CVE-2020-8694
SUSE-SU-2020:2790-1
SUSE-SU-2020:3272-1
Platform(s):SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP1 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-197.67 is installed
  • OR dlm-kmp-default-4.12.14-197.67 is installed
  • OR gfs2-kmp-default-4.12.14-197.67 is installed
  • OR kernel-default-4.12.14-197.67 is installed
  • OR ocfs2-kmp-default-4.12.14-197.67 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • xen-4.12.3_08-3.28 is installed
  • OR xen-devel-4.12.3_08-3.28 is installed
  • OR xen-tools-4.12.3_08-3.28 is installed
    • BACK