Security update for xen SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:1487-1 Final 1 1 2018-06-01T07:54:25Z current 2018-06-01T07:54:25Z 2018-06-01T07:54:25Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for xen This update for xen fixes the following issues: Security issues fixed: - CVE-2018-3639: Spectre V4 – Speculative Store Bypass aka 'Memory Disambiguation' (bsc#1092631) This feature can be controlled by the 'ssbd=on/off' commandline flag for the XEN hypervisor. - CVE-2018-10982: x86 vHPET interrupt injection errors (XSA-261 bsc#1090822) - CVE-2018-10981: qemu may drive Xen into unbounded loop (XSA-262 bsc#1090823) Other bugfixes: - Upstream patches from Jan (bsc#1027519) - additional fixes related to Page Table Isolation (XPTI). (bsc#1074562 XSA-254) - qemu-system-i386 cannot handle more than 4 HW NICs (bsc#1090296) This update was imported from the SUSE:SLE-12-SP3:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2018-06/msg00002.html E-Mail link for openSUSE-SU-2018:1487-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.3 xen-4.9.2_06-22.1 xen-devel-4.9.2_06-22.1 xen-doc-html-4.9.2_06-22.1 xen-libs-4.9.2_06-22.1 xen-tools-4.9.2_06-22.1 xen-tools-domU-4.9.2_06-22.1 xen-4.9.2_06-22.1 as a component of openSUSE Leap 42.3 xen-devel-4.9.2_06-22.1 as a component of openSUSE Leap 42.3 xen-doc-html-4.9.2_06-22.1 as a component of openSUSE Leap 42.3 xen-libs-4.9.2_06-22.1 as a component of openSUSE Leap 42.3 xen-tools-4.9.2_06-22.1 as a component of openSUSE Leap 42.3 xen-tools-domU-4.9.2_06-22.1 as a component of openSUSE Leap 42.3 An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users to cause a denial of service (host OS infinite loop) in situations where a QEMU device model attempts to make invalid transitions between states of a request. CVE-2018-10981 openSUSE Leap 42.3:xen-4.9.2_06-22.1 openSUSE Leap 42.3:xen-devel-4.9.2_06-22.1 openSUSE Leap 42.3:xen-doc-html-4.9.2_06-22.1 openSUSE Leap 42.3:xen-libs-4.9.2_06-22.1 openSUSE Leap 42.3:xen-tools-4.9.2_06-22.1 openSUSE Leap 42.3:xen-tools-domU-4.9.2_06-22.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-06/msg00002.html https://www.suse.com/security/cve/CVE-2018-10981.html CVE-2018-10981 https://bugzilla.suse.com/1090823 SUSE Bug 1090823 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users to cause a denial of service (unexpectedly high interrupt number, array overrun, and hypervisor crash) or possibly gain hypervisor privileges by setting up an HPET timer to deliver interrupts in IO-APIC mode, aka vHPET interrupt injection. CVE-2018-10982 openSUSE Leap 42.3:xen-4.9.2_06-22.1 openSUSE Leap 42.3:xen-devel-4.9.2_06-22.1 openSUSE Leap 42.3:xen-doc-html-4.9.2_06-22.1 openSUSE Leap 42.3:xen-libs-4.9.2_06-22.1 openSUSE Leap 42.3:xen-tools-4.9.2_06-22.1 openSUSE Leap 42.3:xen-tools-domU-4.9.2_06-22.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-06/msg00002.html https://www.suse.com/security/cve/CVE-2018-10982.html CVE-2018-10982 https://bugzilla.suse.com/1090822 SUSE Bug 1090822 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4. CVE-2018-3639 openSUSE Leap 42.3:xen-4.9.2_06-22.1 openSUSE Leap 42.3:xen-devel-4.9.2_06-22.1 openSUSE Leap 42.3:xen-doc-html-4.9.2_06-22.1 openSUSE Leap 42.3:xen-libs-4.9.2_06-22.1 openSUSE Leap 42.3:xen-tools-4.9.2_06-22.1 openSUSE Leap 42.3:xen-tools-domU-4.9.2_06-22.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-06/msg00002.html https://www.suse.com/security/cve/CVE-2018-3639.html CVE-2018-3639 https://bugzilla.suse.com/0 SUSE Bug 0 https://bugzilla.suse.com/1074701 SUSE Bug 1074701 https://bugzilla.suse.com/1085235 SUSE Bug 1085235 https://bugzilla.suse.com/1085308 SUSE Bug 1085308 https://bugzilla.suse.com/1087078 SUSE Bug 1087078 https://bugzilla.suse.com/1087082 SUSE Bug 1087082 https://bugzilla.suse.com/1094912 SUSE Bug 1094912 https://bugzilla.suse.com/1100394 SUSE Bug 1100394 https://bugzilla.suse.com/1102640 SUSE Bug 1102640 https://bugzilla.suse.com/1105412 SUSE Bug 1105412 https://bugzilla.suse.com/1172781 SUSE Bug 1172781 https://bugzilla.suse.com/1172782 SUSE Bug 1172782 https://bugzilla.suse.com/1172783 SUSE Bug 1172783 https://bugzilla.suse.com/1173489 SUSE Bug 1173489 https://bugzilla.suse.com/1174161 SUSE Bug 1174161 https://bugzilla.suse.com/1178658 SUSE Bug 1178658