Описание
Security update for xen
This update for xen fixes the following issues:
- CVE-2021-27379: Fixed an issue where entries in the IOMMU were not being updated under certain circumstances due to improper backport of XSA-321 (XSA-366, bsc#1182431)
- Fixed an issue where xenstored was crashing with segfault (bsc#1182155).
Список пакетов
SUSE Linux Enterprise Server 12 SP2-BCL
xen-4.7.6_14-43.76.1
xen-doc-html-4.7.6_14-43.76.1
xen-libs-4.7.6_14-43.76.1
xen-libs-32bit-4.7.6_14-43.76.1
xen-tools-4.7.6_14-43.76.1
xen-tools-domU-4.7.6_14-43.76.1
SUSE OpenStack Cloud 7
xen-4.7.6_14-43.76.1
xen-doc-html-4.7.6_14-43.76.1
xen-libs-4.7.6_14-43.76.1
xen-libs-32bit-4.7.6_14-43.76.1
xen-tools-4.7.6_14-43.76.1
xen-tools-domU-4.7.6_14-43.76.1
Ссылки
- Link for SUSE-SU-2021:1268-1
- E-Mail link for SUSE-SU-2021:1268-1
- SUSE Security Ratings
- SUSE Bug 1182155
- SUSE Bug 1182431
- SUSE CVE CVE-2021-27379 page
Описание
An issue was discovered in Xen through 4.11.x, allowing x86 Intel HVM guest OS users to achieve unintended read/write DMA access, and possibly cause a denial of service (host OS crash) or gain privileges. This occurs because a backport missed a flush, and thus IOMMU updates were not always correct. NOTE: this issue exists because of an incomplete fix for CVE-2020-15565.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_14-43.76.1
SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_14-43.76.1
SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_14-43.76.1
SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_14-43.76.1
Ссылки
- CVE-2021-27379
- SUSE Bug 1182431