Описание
Security update for xen
This update for xen fixes the following issues:
- CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection (ITS) (XSA-469) (bsc#1243117)
- CVE-2025-1713: Fixed deadlock potential with VT-d and legacy PCI device pass-through (XSA-467) (bsc#1238043)
Список пакетов
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
xen-4.12.4_60-3.127.1
xen-devel-4.12.4_60-3.127.1
xen-doc-html-4.12.4_60-3.127.1
xen-libs-4.12.4_60-3.127.1
xen-libs-32bit-4.12.4_60-3.127.1
xen-tools-4.12.4_60-3.127.1
xen-tools-domU-4.12.4_60-3.127.1
Ссылки
- Link for SUSE-SU-2025:02290-1
- E-Mail link for SUSE-SU-2025:02290-1
- SUSE Security Ratings
- SUSE Bug 1238043
- SUSE Bug 1243117
- SUSE CVE CVE-2024-28956 page
- SUSE CVE CVE-2025-1713 page
Описание
Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Затронутые продукты
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:xen-4.12.4_60-3.127.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:xen-devel-4.12.4_60-3.127.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:xen-doc-html-4.12.4_60-3.127.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:xen-libs-32bit-4.12.4_60-3.127.1
Ссылки
- CVE-2024-28956
- SUSE Bug 1242006
Описание
unknown
Затронутые продукты
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:xen-4.12.4_60-3.127.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:xen-devel-4.12.4_60-3.127.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:xen-doc-html-4.12.4_60-3.127.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:xen-libs-32bit-4.12.4_60-3.127.1
Ссылки
- CVE-2025-1713
- SUSE Bug 1238043