Security update for xen SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2019:1348-1 Final 1 1 2019-05-24T12:04:18Z current 2019-05-24T12:04:18Z 2019-05-24T12:04:18Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for xen This update for xen fixes the following issues: Four new speculative execution information leak issues have been identified in Intel CPUs. (bsc#1111331) - CVE-2018-12126: Microarchitectural Store Buffer Data Sampling (MSBDS) - CVE-2018-12127: Microarchitectural Fill Buffer Data Sampling (MFBDS) - CVE-2018-12130: Microarchitectural Load Port Data Sampling (MLPDS) - CVE-2019-11091: Microarchitectural Data Sampling Uncacheable Memory (MDSUM) These updates contain the XEN Hypervisor adjustments, that additionally also use CPU Microcode updates. The mitigation can be controlled via the 'mds' commandline option, see the documentation. For more information on this set of vulnerabilities, check out https://www.suse.com/support/kb/doc/?id=7023736 Other fixes: - CVE-2018-20815: Fixed a heap buffer overflow while loading device tree blob (bsc#1130680). - Added upstream bug fix (bsc#1027519). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2019-1348,SUSE-SLE-SERVER-12-2019-1348 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2019/suse-su-20191348-1/ Link for SUSE-SU-2019:1348-1 https://lists.suse.com/pipermail/sle-security-updates/2019-May/005498.html E-Mail link for SUSE-SU-2019:1348-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1027519 SUSE Bug 1027519 https://bugzilla.suse.com/1111331 SUSE Bug 1111331 https://bugzilla.suse.com/1130680 SUSE Bug 1130680 https://www.suse.com/security/cve/CVE-2018-12126/ SUSE CVE CVE-2018-12126 page https://www.suse.com/security/cve/CVE-2018-12127/ SUSE CVE CVE-2018-12127 page https://www.suse.com/security/cve/CVE-2018-12130/ SUSE CVE CVE-2018-12130 page https://www.suse.com/security/cve/CVE-2018-20815/ SUSE CVE CVE-2018-20815 page https://www.suse.com/security/cve/CVE-2019-11091/ SUSE CVE CVE-2019-11091 page SUSE Linux Enterprise Server 12-LTSS xen-4.4.4_40-22.80.1 xen-devel-4.4.4_40-22.80.1 xen-doc-html-4.4.4_40-22.80.1 xen-kmp-default-4.4.4_40_k3.12.61_52.149-22.80.1 xen-libs-4.4.4_40-22.80.1 xen-libs-32bit-4.4.4_40-22.80.1 xen-libs-64bit-4.4.4_40-22.80.1 xen-tools-4.4.4_40-22.80.1 xen-tools-domU-4.4.4_40-22.80.1 xen-4.4.4_40-22.80.1 as a component of SUSE Linux Enterprise Server 12-LTSS xen-doc-html-4.4.4_40-22.80.1 as a component of SUSE Linux Enterprise Server 12-LTSS xen-kmp-default-4.4.4_40_k3.12.61_52.149-22.80.1 as a component of SUSE Linux Enterprise Server 12-LTSS xen-libs-4.4.4_40-22.80.1 as a component of SUSE Linux Enterprise Server 12-LTSS xen-libs-32bit-4.4.4_40-22.80.1 as a component of SUSE Linux Enterprise Server 12-LTSS xen-tools-4.4.4_40-22.80.1 as a component of SUSE Linux Enterprise Server 12-LTSS xen-tools-domU-4.4.4_40-22.80.1 as a component of SUSE Linux Enterprise Server 12-LTSS Microarchitectural Store Buffer Data Sampling (MSBDS): Store buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf CVE-2018-12126 SUSE Linux Enterprise Server 12-LTSS:xen-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-doc-html-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-kmp-default-4.4.4_40_k3.12.61_52.149-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-libs-32bit-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-libs-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-tools-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-tools-domU-4.4.4_40-22.80.1 moderate 4.7 AV:L/AC:M/Au:N/C:C/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191348-1/ https://www.suse.com/security/cve/CVE-2018-12126.html CVE-2018-12126 https://bugzilla.suse.com/1103186 SUSE Bug 1103186 https://bugzilla.suse.com/1111331 SUSE Bug 1111331 https://bugzilla.suse.com/1132686 SUSE Bug 1132686 https://bugzilla.suse.com/1135409 SUSE Bug 1135409 https://bugzilla.suse.com/1135524 SUSE Bug 1135524 https://bugzilla.suse.com/1137916 SUSE Bug 1137916 https://bugzilla.suse.com/1138534 SUSE Bug 1138534 https://bugzilla.suse.com/1141977 SUSE Bug 1141977 https://bugzilla.suse.com/1149725 SUSE Bug 1149725 https://bugzilla.suse.com/1149726 SUSE Bug 1149726 https://bugzilla.suse.com/1149729 SUSE Bug 1149729 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1201877 SUSE Bug 1201877 Microarchitectural Load Port Data Sampling (MLPDS): Load ports on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf CVE-2018-12127 SUSE Linux Enterprise Server 12-LTSS:xen-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-doc-html-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-kmp-default-4.4.4_40_k3.12.61_52.149-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-libs-32bit-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-libs-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-tools-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-tools-domU-4.4.4_40-22.80.1 moderate 4.7 AV:L/AC:M/Au:N/C:C/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191348-1/ https://www.suse.com/security/cve/CVE-2018-12127.html CVE-2018-12127 https://bugzilla.suse.com/1103186 SUSE Bug 1103186 https://bugzilla.suse.com/1111331 SUSE Bug 1111331 https://bugzilla.suse.com/1132686 SUSE Bug 1132686 https://bugzilla.suse.com/1135409 SUSE Bug 1135409 https://bugzilla.suse.com/1138534 SUSE Bug 1138534 https://bugzilla.suse.com/1141977 SUSE Bug 1141977 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1201877 SUSE Bug 1201877 Microarchitectural Fill Buffer Data Sampling (MFBDS): Fill buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf CVE-2018-12130 SUSE Linux Enterprise Server 12-LTSS:xen-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-doc-html-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-kmp-default-4.4.4_40_k3.12.61_52.149-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-libs-32bit-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-libs-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-tools-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-tools-domU-4.4.4_40-22.80.1 moderate 4.7 AV:L/AC:M/Au:N/C:C/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191348-1/ https://www.suse.com/security/cve/CVE-2018-12130.html CVE-2018-12130 https://bugzilla.suse.com/1103186 SUSE Bug 1103186 https://bugzilla.suse.com/1111331 SUSE Bug 1111331 https://bugzilla.suse.com/1132686 SUSE Bug 1132686 https://bugzilla.suse.com/1135409 SUSE Bug 1135409 https://bugzilla.suse.com/1137916 SUSE Bug 1137916 https://bugzilla.suse.com/1138534 SUSE Bug 1138534 https://bugzilla.suse.com/1141977 SUSE Bug 1141977 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1201877 SUSE Bug 1201877 In QEMU 3.1.0, load_device_tree in device_tree.c calls the deprecated load_image function, which has a buffer overflow risk. CVE-2018-20815 SUSE Linux Enterprise Server 12-LTSS:xen-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-doc-html-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-kmp-default-4.4.4_40_k3.12.61_52.149-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-libs-32bit-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-libs-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-tools-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-tools-domU-4.4.4_40-22.80.1 moderate 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191348-1/ https://www.suse.com/security/cve/CVE-2018-20815.html CVE-2018-20815 https://bugzilla.suse.com/1118900 SUSE Bug 1118900 https://bugzilla.suse.com/1130675 SUSE Bug 1130675 https://bugzilla.suse.com/1130680 SUSE Bug 1130680 https://bugzilla.suse.com/1138043 SUSE Bug 1138043 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 Microarchitectural Data Sampling Uncacheable Memory (MDSUM): Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be found here: https://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf CVE-2019-11091 SUSE Linux Enterprise Server 12-LTSS:xen-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-doc-html-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-kmp-default-4.4.4_40_k3.12.61_52.149-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-libs-32bit-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-libs-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-tools-4.4.4_40-22.80.1 SUSE Linux Enterprise Server 12-LTSS:xen-tools-domU-4.4.4_40-22.80.1 moderate 4.7 AV:L/AC:M/Au:N/C:C/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191348-1/ https://www.suse.com/security/cve/CVE-2019-11091.html CVE-2019-11091 https://bugzilla.suse.com/1103186 SUSE Bug 1103186 https://bugzilla.suse.com/1111331 SUSE Bug 1111331 https://bugzilla.suse.com/1132686 SUSE Bug 1132686 https://bugzilla.suse.com/1133319 SUSE Bug 1133319 https://bugzilla.suse.com/1135394 SUSE Bug 1135394 https://bugzilla.suse.com/1138043 SUSE Bug 1138043 https://bugzilla.suse.com/1138534 SUSE Bug 1138534 https://bugzilla.suse.com/1141977 SUSE Bug 1141977 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1201877 SUSE Bug 1201877