Описание
Security update for xen
This update for xen fixes the following issues:
Transient execution side-channel attacks attacking the Branch History Buffer (BHB), named 'Branch Target Injection' and 'Intra-Mode Branch History Injection' are now mitigated.
- CVE-2022-0001, CVE-2022-0002, CVE-2021-26401: BHB speculation issues (bsc#1196915).
Список пакетов
Image SLES15-SP1-CHOST-BYOS-EC2
xen-libs-4.12.4_20-3.63.1
xen-tools-domU-4.12.4_20-3.63.1
Image SLES15-SP1-SAPCAL-EC2-HVM
xen-libs-4.12.4_20-3.63.1
xen-tools-domU-4.12.4_20-3.63.1
SUSE Enterprise Storage 6
xen-4.12.4_20-3.63.1
xen-devel-4.12.4_20-3.63.1
xen-libs-4.12.4_20-3.63.1
xen-tools-4.12.4_20-3.63.1
xen-tools-domU-4.12.4_20-3.63.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
xen-4.12.4_20-3.63.1
xen-devel-4.12.4_20-3.63.1
xen-libs-4.12.4_20-3.63.1
xen-tools-4.12.4_20-3.63.1
xen-tools-domU-4.12.4_20-3.63.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
xen-4.12.4_20-3.63.1
xen-devel-4.12.4_20-3.63.1
xen-libs-4.12.4_20-3.63.1
xen-tools-4.12.4_20-3.63.1
xen-tools-domU-4.12.4_20-3.63.1
SUSE Linux Enterprise Server 15 SP1-BCL
xen-4.12.4_20-3.63.1
xen-devel-4.12.4_20-3.63.1
xen-libs-4.12.4_20-3.63.1
xen-tools-4.12.4_20-3.63.1
xen-tools-domU-4.12.4_20-3.63.1
SUSE Linux Enterprise Server 15 SP1-LTSS
xen-4.12.4_20-3.63.1
xen-devel-4.12.4_20-3.63.1
xen-libs-4.12.4_20-3.63.1
xen-tools-4.12.4_20-3.63.1
xen-tools-domU-4.12.4_20-3.63.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
xen-4.12.4_20-3.63.1
xen-devel-4.12.4_20-3.63.1
xen-libs-4.12.4_20-3.63.1
xen-tools-4.12.4_20-3.63.1
xen-tools-domU-4.12.4_20-3.63.1
Ссылки
- Link for SUSE-SU-2022:0931-1
- E-Mail link for SUSE-SU-2022:0931-1
- SUSE Security Ratings
- SUSE Bug 1196915
- SUSE CVE CVE-2021-26401 page
- SUSE CVE CVE-2022-0001 page
- SUSE CVE CVE-2022-0002 page
Описание
LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.
Затронутые продукты
Image SLES15-SP1-CHOST-BYOS-EC2:xen-libs-4.12.4_20-3.63.1
Image SLES15-SP1-CHOST-BYOS-EC2:xen-tools-domU-4.12.4_20-3.63.1
Image SLES15-SP1-SAPCAL-EC2-HVM:xen-libs-4.12.4_20-3.63.1
Image SLES15-SP1-SAPCAL-EC2-HVM:xen-tools-domU-4.12.4_20-3.63.1
Ссылки
- CVE-2021-26401
- SUSE Bug 1191580
- SUSE Bug 1196901
- SUSE Bug 1209630
Описание
Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
Затронутые продукты
Image SLES15-SP1-CHOST-BYOS-EC2:xen-libs-4.12.4_20-3.63.1
Image SLES15-SP1-CHOST-BYOS-EC2:xen-tools-domU-4.12.4_20-3.63.1
Image SLES15-SP1-SAPCAL-EC2-HVM:xen-libs-4.12.4_20-3.63.1
Image SLES15-SP1-SAPCAL-EC2-HVM:xen-tools-domU-4.12.4_20-3.63.1
Ссылки
- CVE-2022-0001
- SUSE Bug 1191580
- SUSE Bug 1196901
Описание
Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
Затронутые продукты
Image SLES15-SP1-CHOST-BYOS-EC2:xen-libs-4.12.4_20-3.63.1
Image SLES15-SP1-CHOST-BYOS-EC2:xen-tools-domU-4.12.4_20-3.63.1
Image SLES15-SP1-SAPCAL-EC2-HVM:xen-libs-4.12.4_20-3.63.1
Image SLES15-SP1-SAPCAL-EC2-HVM:xen-tools-domU-4.12.4_20-3.63.1
Ссылки
- CVE-2022-0002
- SUSE Bug 1191580
- SUSE Bug 1196901