Описание
Security update for Xen
Xen was updated to fix two security issues and a bug:
* CVE-2015-3456: A buffer overflow in the floppy drive emulation, which
could be used to carry out denial of service attacks or potential
code execution against the host. This vulnerability is also known as
VENOM.
* CVE-2015-3340: Xen did not initialize certain fields, which allowed
certain remote service domains to obtain sensitive information from
memory via a (1) XEN_DOMCTL_gettscinfo or (2)
XEN_SYSCTL_getdomaininfolist request.
* An exception in setCPUAffinity when restoring guests. (bsc#910441)
Security Issues:
* CVE-2015-3456
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3456>
* CVE-2015-3340
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3340>
Список пакетов
SUSE Linux Enterprise Desktop 11 SP3
xen-4.2.5_06-0.7.1
xen-doc-html-4.2.5_06-0.7.1
xen-doc-pdf-4.2.5_06-0.7.1
xen-kmp-default-4.2.5_06_3.0.101_0.47.52-0.7.1
xen-kmp-pae-4.2.5_06_3.0.101_0.47.52-0.7.1
xen-libs-4.2.5_06-0.7.1
xen-libs-32bit-4.2.5_06-0.7.1
xen-tools-4.2.5_06-0.7.1
xen-tools-domU-4.2.5_06-0.7.1
SUSE Linux Enterprise Server 11 SP3
xen-4.2.5_06-0.7.1
xen-doc-html-4.2.5_06-0.7.1
xen-doc-pdf-4.2.5_06-0.7.1
xen-kmp-default-4.2.5_06_3.0.101_0.47.52-0.7.1
xen-kmp-pae-4.2.5_06_3.0.101_0.47.52-0.7.1
xen-libs-4.2.5_06-0.7.1
xen-libs-32bit-4.2.5_06-0.7.1
xen-tools-4.2.5_06-0.7.1
xen-tools-domU-4.2.5_06-0.7.1
SUSE Linux Enterprise Server 11 SP3-TERADATA
xen-4.2.5_06-0.7.1
xen-doc-html-4.2.5_06-0.7.1
xen-doc-pdf-4.2.5_06-0.7.1
xen-kmp-default-4.2.5_06_3.0.101_0.47.52-0.7.1
xen-kmp-pae-4.2.5_06_3.0.101_0.47.52-0.7.1
xen-libs-4.2.5_06-0.7.1
xen-libs-32bit-4.2.5_06-0.7.1
xen-tools-4.2.5_06-0.7.1
xen-tools-domU-4.2.5_06-0.7.1
SUSE Linux Enterprise Server for SAP Applications 11 SP3
xen-4.2.5_06-0.7.1
xen-doc-html-4.2.5_06-0.7.1
xen-doc-pdf-4.2.5_06-0.7.1
xen-kmp-default-4.2.5_06_3.0.101_0.47.52-0.7.1
xen-kmp-pae-4.2.5_06_3.0.101_0.47.52-0.7.1
xen-libs-4.2.5_06-0.7.1
xen-libs-32bit-4.2.5_06-0.7.1
xen-tools-4.2.5_06-0.7.1
xen-tools-domU-4.2.5_06-0.7.1
SUSE Linux Enterprise Software Development Kit 11 SP3
xen-devel-4.2.5_06-0.7.1
Ссылки
- Link for SUSE-SU-2015:0927-1
- E-Mail link for SUSE-SU-2015:0927-1
- SUSE Security Ratings
- SUSE Bug 910441
- SUSE Bug 927967
- SUSE Bug 929339
- SUSE CVE CVE-2015-3456 page
Описание
The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.
Затронутые продукты
SUSE Linux Enterprise Desktop 11 SP3:xen-4.2.5_06-0.7.1
SUSE Linux Enterprise Desktop 11 SP3:xen-doc-html-4.2.5_06-0.7.1
SUSE Linux Enterprise Desktop 11 SP3:xen-doc-pdf-4.2.5_06-0.7.1
SUSE Linux Enterprise Desktop 11 SP3:xen-kmp-default-4.2.5_06_3.0.101_0.47.52-0.7.1
Ссылки
- CVE-2015-3456
- SUSE Bug 929339
- SUSE Bug 932770
- SUSE Bug 935900