Описание
Security update for xen
This update for xen fixes the following issues:
- CVE-2021-20257: xen: infinite loop issue in the e1000 NIC emulator (bsc#1182846).
- CVE-2021-27379: Fixed an issue where entries in the IOMMU were not being updated under certain circumstances due to improper backport of XSA-321 (XSA-366, bsc#1182431).
Список пакетов
HPE Helion OpenStack 8
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Ссылки
- Link for SUSE-SU-2021:1252-1
- E-Mail link for SUSE-SU-2021:1252-1
- SUSE Security Ratings
- SUSE Bug 1182431
- SUSE Bug 1182846
- SUSE CVE CVE-2021-20257 page
- SUSE CVE CVE-2021-27379 page
Описание
An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descriptors in process_tx_desc if various descriptor fields are initialized with invalid values. This flaw allows a guest to consume CPU cycles on the host, resulting in a denial of service. The highest threat from this vulnerability is to system availability.
Затронутые продукты
Ссылки
- CVE-2021-20257
- SUSE Bug 1182577
- SUSE Bug 1182846
Описание
An issue was discovered in Xen through 4.11.x, allowing x86 Intel HVM guest OS users to achieve unintended read/write DMA access, and possibly cause a denial of service (host OS crash) or gain privileges. This occurs because a backport missed a flush, and thus IOMMU updates were not always correct. NOTE: this issue exists because of an incomplete fix for CVE-2020-15565.
Затронутые продукты
Ссылки
- CVE-2021-27379
- SUSE Bug 1182431