Oval Definition:oval:org.opensuse.security:def:80157
Revision Date:2015-06-05Version:1
Title:Security update for Xen
Description:



Xen was updated to fix seven security vulnerabilities:

* CVE-2015-4103: Potential unintended writes to host MSI message data field via qemu. (XSA-128, bnc#931625) * CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests. (XSA-129, bnc#931626) * CVE-2015-4105: Guest triggerable qemu MSI-X pass-through error messages. (XSA-130, bnc#931627) * CVE-2015-4106: Unmediated PCI register access in qemu. (XSA-131, bnc#931628) * CVE-2015-4163: GNTTABOP_swap_grant_ref operation misbehavior. (XSA-134, bnc#932790) * CVE-2015-3209: Heap overflow in qemu pcnet controller allowing guest to host escape. (XSA-135, bnc#932770) * CVE-2015-4164: DoS through iret hypercall handler. (XSA-136, bnc#932996)

Security Issues:

* CVE-2015-4103 * CVE-2015-4104 * CVE-2015-4105 * CVE-2015-4106 * CVE-2015-4163 * CVE-2015-4164 * CVE-2015-3209

Family:unixClass:patch
Status:Reference(s):931625
931626
931627
931628
932770
932790
932996
CVE-2015-3209
CVE-2015-4103
CVE-2015-4104
CVE-2015-4105
CVE-2015-4106
CVE-2015-4163
CVE-2015-4164
SUSE-SU-2015:1045-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • xen-4.2.5_08-0.9.1 is installed
  • OR xen-doc-html-4.2.5_08-0.9.1 is installed
  • OR xen-doc-pdf-4.2.5_08-0.9.1 is installed
  • OR xen-kmp-default-4.2.5_08_3.0.101_0.47.55-0.9.1 is installed
  • OR xen-kmp-pae-4.2.5_08_3.0.101_0.47.55-0.9.1 is installed
  • OR xen-libs-4.2.5_08-0.9.1 is installed
  • OR xen-libs-32bit-4.2.5_08-0.9.1 is installed
  • OR xen-tools-4.2.5_08-0.9.1 is installed
  • OR xen-tools-domU-4.2.5_08-0.9.1 is installed
    • BACK