SUSE-SU-2023:0214-1

Опубликовано: 30 янв. 2023

Источник: suse-cvrf

Описание

Security update for xen

This update for xen fixes the following issues:

CVE-2022-23824: Fixed multiple speculative security issues (bsc#1205209).

Список пакетов

Image SLES15-SP2-BYOS-Azure

xen-libs-4.13.4_18-150200.3.68.1

Image SLES15-SP2-HPC-BYOS-Azure

xen-libs-4.13.4_18-150200.3.68.1

Image SLES15-SP2-SAP-Azure

xen-libs-4.13.4_18-150200.3.68.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production

xen-libs-4.13.4_18-150200.3.68.1

Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production

xen-libs-4.13.4_18-150200.3.68.1

Image SLES15-SP2-SAP-BYOS-Azure

xen-libs-4.13.4_18-150200.3.68.1

Image SLES15-SP2-SAP-BYOS-EC2-HVM

xen-libs-4.13.4_18-150200.3.68.1

xen-tools-domU-4.13.4_18-150200.3.68.1

Image SLES15-SP2-SAP-BYOS-GCE

xen-libs-4.13.4_18-150200.3.68.1

Image SLES15-SP2-SAP-EC2-HVM

xen-libs-4.13.4_18-150200.3.68.1

xen-tools-domU-4.13.4_18-150200.3.68.1

Image SLES15-SP2-SAP-GCE

xen-libs-4.13.4_18-150200.3.68.1

SUSE Enterprise Storage 7

xen-4.13.4_18-150200.3.68.1

xen-devel-4.13.4_18-150200.3.68.1

xen-libs-4.13.4_18-150200.3.68.1

xen-tools-4.13.4_18-150200.3.68.1

xen-tools-domU-4.13.4_18-150200.3.68.1

xen-tools-xendomains-wait-disk-4.13.4_18-150200.3.68.1

SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

xen-4.13.4_18-150200.3.68.1

xen-devel-4.13.4_18-150200.3.68.1

xen-libs-4.13.4_18-150200.3.68.1

xen-tools-4.13.4_18-150200.3.68.1

xen-tools-domU-4.13.4_18-150200.3.68.1

xen-tools-xendomains-wait-disk-4.13.4_18-150200.3.68.1

SUSE Linux Enterprise Server 15 SP2-LTSS

xen-4.13.4_18-150200.3.68.1

xen-devel-4.13.4_18-150200.3.68.1

xen-libs-4.13.4_18-150200.3.68.1

xen-tools-4.13.4_18-150200.3.68.1

xen-tools-domU-4.13.4_18-150200.3.68.1

xen-tools-xendomains-wait-disk-4.13.4_18-150200.3.68.1

SUSE Linux Enterprise Server for SAP Applications 15 SP2

xen-4.13.4_18-150200.3.68.1

xen-devel-4.13.4_18-150200.3.68.1

xen-libs-4.13.4_18-150200.3.68.1

xen-tools-4.13.4_18-150200.3.68.1

xen-tools-domU-4.13.4_18-150200.3.68.1

xen-tools-xendomains-wait-disk-4.13.4_18-150200.3.68.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20230214-1/
Link for SUSE-SU-2023:0214-1
https://lists.suse.com/pipermail/sle-security-updates/2023-January/013595.html
E-Mail link for SUSE-SU-2023:0214-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1205209
SUSE Bug 1205209
https://www.suse.com/security/cve/CVE-2022-23824/
SUSE CVE CVE-2022-23824 page

Описание

IBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leading to a potential information disclosure.

Затронутые продукты

Image SLES15-SP2-BYOS-Azure:xen-libs-4.13.4_18-150200.3.68.1

Image SLES15-SP2-HPC-BYOS-Azure:xen-libs-4.13.4_18-150200.3.68.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:xen-libs-4.13.4_18-150200.3.68.1

Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production:xen-libs-4.13.4_18-150200.3.68.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-23824.html
CVE-2022-23824
https://bugzilla.suse.com/1205209
SUSE Bug 1205209

SUSE-SU-2023:0214-1

Описание

Список пакетов

Image SLES15-SP2-BYOS-Azure

Image SLES15-SP2-HPC-BYOS-Azure

Image SLES15-SP2-SAP-Azure

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production

Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP2-SAP-BYOS-Azure

Image SLES15-SP2-SAP-BYOS-EC2-HVM

Image SLES15-SP2-SAP-BYOS-GCE

Image SLES15-SP2-SAP-EC2-HVM

Image SLES15-SP2-SAP-GCE

SUSE Enterprise Storage 7

SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

SUSE Linux Enterprise Server 15 SP2-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP2

Ссылки

Уязвимость: CVE-2022-23824

Описание

Затронутые продукты

Ссылки