Oval Definition:oval:org.opensuse.security:def:84901
Revision Date:2018-07-25Version:1
Title:Security update for xen (Moderate)
Description:

This update for xen fixes the following issues:

Security issues fixed:

- CVE-2018-3665: Fix Lazy FP Save/Restore issue (XSA-267) (bsc#1095242). - CVE-2018-12891: Fix possible Denial of Service (DoS) via certain PV MMU operations that affect the entire host (XSA-264) (bsc#1097521). - CVE-2018-12892: Fix libxl to honour the readonly flag on HVM emulated SCSI disks (XSA-266) (bsc#1097523). - CVE-2018-12893: Fix crash/Denial of Service (DoS) via safety check (XSA-265) (bsc#1097522). - CVE-2018-11806: Fix heap buffer overflow while reassembling fragmented datagrams (bsc#1096224).

Bug fixes:

- bsc#1027519: Add upstream patches from January. - bsc#1087289: Fix xen scheduler crash.
Family:unixClass:patch
Status:Reference(s):1027519
1087289
1095242
1096224
1097521
1097522
1097523
CVE-2018-11806
CVE-2018-12891
CVE-2018-12892
CVE-2018-12893
CVE-2018-3665
SUSE-SU-2018:2059-1
Platform(s):SUSE Linux Enterprise Server 12 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • xen-4.9.2_08-3.35.2 is installed
  • OR xen-doc-html-4.9.2_08-3.35.2 is installed
  • OR xen-libs-4.9.2_08-3.35.2 is installed
  • OR xen-libs-32bit-4.9.2_08-3.35.2 is installed
  • OR xen-tools-4.9.2_08-3.35.2 is installed
  • OR xen-tools-domU-4.9.2_08-3.35.2 is installed
    • BACK