Описание
Security update for xen
This update for xen fixes the following issues:
- CVE-2022-23824: Fixed multiple speculative execution issues (bnc#1205209).
Список пакетов
SUSE Enterprise Storage 6
xen-4.12.4_32-150100.3.83.1
xen-devel-4.12.4_32-150100.3.83.1
xen-libs-4.12.4_32-150100.3.83.1
xen-tools-4.12.4_32-150100.3.83.1
xen-tools-domU-4.12.4_32-150100.3.83.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
xen-4.12.4_32-150100.3.83.1
xen-devel-4.12.4_32-150100.3.83.1
xen-libs-4.12.4_32-150100.3.83.1
xen-tools-4.12.4_32-150100.3.83.1
xen-tools-domU-4.12.4_32-150100.3.83.1
SUSE Linux Enterprise Server 15 SP1-LTSS
xen-4.12.4_32-150100.3.83.1
xen-devel-4.12.4_32-150100.3.83.1
xen-libs-4.12.4_32-150100.3.83.1
xen-tools-4.12.4_32-150100.3.83.1
xen-tools-domU-4.12.4_32-150100.3.83.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
xen-4.12.4_32-150100.3.83.1
xen-devel-4.12.4_32-150100.3.83.1
xen-libs-4.12.4_32-150100.3.83.1
xen-tools-4.12.4_32-150100.3.83.1
xen-tools-domU-4.12.4_32-150100.3.83.1
Ссылки
- Link for SUSE-SU-2023:0154-1
- E-Mail link for SUSE-SU-2023:0154-1
- SUSE Security Ratings
- SUSE Bug 1205209
- SUSE CVE CVE-2022-23824 page
Описание
IBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leading to a potential information disclosure.
Затронутые продукты
SUSE Enterprise Storage 6:xen-4.12.4_32-150100.3.83.1
SUSE Enterprise Storage 6:xen-devel-4.12.4_32-150100.3.83.1
SUSE Enterprise Storage 6:xen-libs-4.12.4_32-150100.3.83.1
SUSE Enterprise Storage 6:xen-tools-4.12.4_32-150100.3.83.1
Ссылки
- CVE-2022-23824
- SUSE Bug 1205209