Описание
Security update for xen
This update for xen fixes the following issues:
Security fixes:
- CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection (ITS) (XSA-469) (bsc#1243117)
Other fixes:
- Upstream bug fixes (bsc#1027519)
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15 SP7
xen-libs-4.20.0_12-150700.3.3.1
xen-tools-domU-4.20.0_12-150700.3.3.1
SUSE Linux Enterprise Module for Server Applications 15 SP7
xen-4.20.0_12-150700.3.3.1
xen-devel-4.20.0_12-150700.3.3.1
xen-tools-4.20.0_12-150700.3.3.1
xen-tools-xendomains-wait-disk-4.20.0_12-150700.3.3.1
Ссылки
- Link for SUSE-SU-2025:02030-1
- E-Mail link for SUSE-SU-2025:02030-1
- SUSE Security Ratings
- SUSE Bug 1027519
- SUSE Bug 1243117
- SUSE CVE CVE-2024-28956 page
Описание
Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.0_12-150700.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.0_12-150700.3.3.1
SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.0_12-150700.3.3.1
SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.0_12-150700.3.3.1
Ссылки
- CVE-2024-28956
- SUSE Bug 1242006