SUSE-SU-2023:0169-1

Опубликовано: 26 янв. 2023

Источник: suse-cvrf

Описание

Security update for xen

This update for xen fixes the following issues:

CVE-2022-23824: Fixed multiple speculative execution issues (bnc#1205209).

Non-security fixes:

Updated to version 4.16.3 (bsc#1027519).

Список пакетов

Image SLES15-SP4

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Azure-Basic

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Azure-Standard

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-BYOS

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-BYOS-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-BYOS-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-BYOS-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-CHOST-BYOS

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-CHOST-BYOS-Aliyun

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-CHOST-BYOS-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-CHOST-BYOS-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-CHOST-BYOS-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-CHOST-BYOS-SAP-CCloud

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-EC2-ECS-HVM

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-HPC

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-HPC-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-HPC-BYOS

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-HPC-BYOS-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-HPC-BYOS-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-HPC-BYOS-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-HPC-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-HPC-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Hardened-BYOS

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Hardened-BYOS-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Hardened-BYOS-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Hardened-BYOS-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Proxy-4-3-BYOS

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Server-4-3

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Server-4-3-Azure-llc

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Server-4-3-Azure-ltd

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Server-4-3-BYOS

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Server-4-3-EC2-llc

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Manager-Server-4-3-EC2-ltd

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-3

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-3-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-3-BYOS

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-3-BYOS-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-3-BYOS-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-3-BYOS-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-3-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-3-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-4

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-4-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-4-BYOS

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-4-BYOS-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-4-BYOS-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-4-BYOS-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-4-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Micro-5-4-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Azure-LI-BYOS

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Azure-LI-BYOS-Production

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Azure-VLI-BYOS

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-BYOS

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-BYOS-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-BYOS-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-BYOS-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Hardened

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Hardened-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Hardened-BYOS

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Hardened-BYOS-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Hardened-BYOS-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Hardened-BYOS-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Hardened-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAP-Hardened-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAPCAL

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAPCAL-Azure

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAPCAL-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SAPCAL-GCE

xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SUSE-Rancher-Setup-BYOS

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

Image SLES15-SP4-SUSE-Rancher-Setup-BYOS-EC2

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

SUSE Linux Enterprise Micro 5.3

xen-libs-4.16.3_02-150400.4.19.1

SUSE Linux Enterprise Module for Basesystem 15 SP4

xen-libs-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

SUSE Linux Enterprise Module for Server Applications 15 SP4

xen-4.16.3_02-150400.4.19.1

xen-devel-4.16.3_02-150400.4.19.1

xen-tools-4.16.3_02-150400.4.19.1

xen-tools-xendomains-wait-disk-4.16.3_02-150400.4.19.1

openSUSE Leap 15.4

xen-4.16.3_02-150400.4.19.1

xen-devel-4.16.3_02-150400.4.19.1

xen-doc-html-4.16.3_02-150400.4.19.1

xen-libs-4.16.3_02-150400.4.19.1

xen-libs-32bit-4.16.3_02-150400.4.19.1

xen-tools-4.16.3_02-150400.4.19.1

xen-tools-domU-4.16.3_02-150400.4.19.1

xen-tools-xendomains-wait-disk-4.16.3_02-150400.4.19.1

openSUSE Leap Micro 5.3

xen-libs-4.16.3_02-150400.4.19.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20230169-1/
Link for SUSE-SU-2023:0169-1
https://lists.suse.com/pipermail/sle-security-updates/2023-January/013545.html
E-Mail link for SUSE-SU-2023:0169-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1027519
SUSE Bug 1027519
https://bugzilla.suse.com/1205209
SUSE Bug 1205209
https://www.suse.com/security/cve/CVE-2022-23824/
SUSE CVE CVE-2022-23824 page

Описание

IBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leading to a potential information disclosure.

Затронутые продукты

Image SLES15-SP4-Azure-Basic:xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-Azure-Standard:xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-BYOS-Azure:xen-libs-4.16.3_02-150400.4.19.1

Image SLES15-SP4-BYOS-EC2:xen-libs-4.16.3_02-150400.4.19.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-23824.html
CVE-2022-23824
https://bugzilla.suse.com/1205209
SUSE Bug 1205209