Описание
Security update for xen
This update for xen fixes the following issues:
- CVE-2023-20569: Fixed side channel attack Inception or RAS Poisoning. (bsc#1214082, XSA-434)
- CVE-2022-40982: Fixed transient execution attack called 'Gather Data Sampling'. (bsc#1214083, XSA-435)
- CVE-2023-20593: Fixed a ZenBleed issue in 'Zen 2' CPUs that could allow an attacker to potentially access sensitive information. (bsc#1213616, XSA-433)
Список пакетов
Image SLES15-SP5-Azure-3P
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Azure-Basic
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Azure-Standard
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-BYOS-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-BYOS-EC2
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-BYOS-GCE
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-CHOST-BYOS-Aliyun
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-CHOST-BYOS-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-CHOST-BYOS-EC2
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-CHOST-BYOS-GCE
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-CHOST-BYOS-GDC
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-CHOST-BYOS-SAP-CCloud
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-EC2
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-GCE
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-HPC-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-HPC-BYOS-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-HPC-BYOS-EC2
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-HPC-BYOS-GCE
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Hardened-BYOS-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Hardened-BYOS-EC2
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Hardened-BYOS-GCE
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-EC2
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-GCE
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Server-5-0
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Server-5-0-Azure-llc
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Server-5-0-Azure-ltd
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Server-5-0-BYOS
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-EC2
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-GCE
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Server-5-0-EC2-llc
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Manager-Server-5-0-EC2-ltd
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Micro-5-5
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Micro-5-5-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Micro-5-5-BYOS
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Micro-5-5-BYOS-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Micro-5-5-BYOS-EC2
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Micro-5-5-BYOS-GCE
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Micro-5-5-EC2
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Micro-5-5-GCE
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-Azure-3P
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-BYOS-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-BYOS-EC2
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-BYOS-GCE
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-Hardened-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAP-Hardened-GCE
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAPCAL-Azure
xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAPCAL-EC2
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
Image SLES15-SP5-SAPCAL-GCE
xen-libs-4.17.2_02-150500.3.6.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
xen-libs-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
SUSE Linux Enterprise Module for Server Applications 15 SP5
xen-4.17.2_02-150500.3.6.1
xen-devel-4.17.2_02-150500.3.6.1
xen-tools-4.17.2_02-150500.3.6.1
xen-tools-xendomains-wait-disk-4.17.2_02-150500.3.6.1
openSUSE Leap 15.5
xen-4.17.2_02-150500.3.6.1
xen-devel-4.17.2_02-150500.3.6.1
xen-doc-html-4.17.2_02-150500.3.6.1
xen-libs-4.17.2_02-150500.3.6.1
xen-libs-32bit-4.17.2_02-150500.3.6.1
xen-tools-4.17.2_02-150500.3.6.1
xen-tools-domU-4.17.2_02-150500.3.6.1
xen-tools-xendomains-wait-disk-4.17.2_02-150500.3.6.1
Ссылки
- Link for SUSE-SU-2023:3447-1
- E-Mail link for SUSE-SU-2023:3447-1
- SUSE Security Ratings
- SUSE Bug 1027519
- SUSE Bug 1212684
- SUSE Bug 1213616
- SUSE Bug 1214082
- SUSE Bug 1214083
- SUSE CVE CVE-2022-40982 page
- SUSE CVE CVE-2023-20569 page
- SUSE CVE CVE-2023-20593 page
Описание
Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Затронутые продукты
Image SLES15-SP5-Azure-3P:xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Azure-Basic:xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Azure-Standard:xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-BYOS-Azure:xen-libs-4.17.2_02-150500.3.6.1
Ссылки
- CVE-2022-40982
- SUSE Bug 1206418
- SUSE Bug 1215674
Описание
A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure.
Затронутые продукты
Image SLES15-SP5-Azure-3P:xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Azure-Basic:xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Azure-Standard:xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-BYOS-Azure:xen-libs-4.17.2_02-150500.3.6.1
Ссылки
- CVE-2023-20569
- SUSE Bug 1213287
Описание
An issue in "Zen 2" CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.
Затронутые продукты
Image SLES15-SP5-Azure-3P:xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Azure-Basic:xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-Azure-Standard:xen-libs-4.17.2_02-150500.3.6.1
Image SLES15-SP5-BYOS-Azure:xen-libs-4.17.2_02-150500.3.6.1
Ссылки
- CVE-2023-20593
- SUSE Bug 1213286
- SUSE Bug 1213616
- SUSE Bug 1215674