SUSE-SU-2025:02290-1

Опубликовано: 11 июл. 2025

Источник: suse-cvrf

Описание

Security update for xen

This update for xen fixes the following issues:

CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection (ITS) (XSA-469) (bsc#1243117)
CVE-2025-1713: Fixed deadlock potential with VT-d and legacy PCI device pass-through (XSA-467) (bsc#1238043)

Список пакетов

Image SLES12-SP5-EC2-BYOS

xen-libs-4.12.4_60-3.127.1

xen-tools-domU-4.12.4_60-3.127.1

Image SLES12-SP5-EC2-ECS-On-Demand

xen-libs-4.12.4_60-3.127.1

xen-tools-domU-4.12.4_60-3.127.1

Image SLES12-SP5-EC2-On-Demand

xen-libs-4.12.4_60-3.127.1

xen-tools-domU-4.12.4_60-3.127.1

Image SLES12-SP5-EC2-SAP-BYOS

xen-libs-4.12.4_60-3.127.1

xen-tools-domU-4.12.4_60-3.127.1

Image SLES12-SP5-EC2-SAP-On-Demand

xen-libs-4.12.4_60-3.127.1

xen-tools-domU-4.12.4_60-3.127.1

SUSE Linux Enterprise Server LTSS Extended Security 12 SP5

xen-4.12.4_60-3.127.1

xen-devel-4.12.4_60-3.127.1

xen-doc-html-4.12.4_60-3.127.1

xen-libs-4.12.4_60-3.127.1

xen-libs-32bit-4.12.4_60-3.127.1

xen-tools-4.12.4_60-3.127.1

xen-tools-domU-4.12.4_60-3.127.1

Ссылки

https://www.suse.com/support/update/announcement/2025/suse-su-202502290-1/
Link for SUSE-SU-2025:02290-1
https://lists.suse.com/pipermail/sle-updates/2025-July/040683.html
E-Mail link for SUSE-SU-2025:02290-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1238043
SUSE Bug 1238043
https://bugzilla.suse.com/1243117
SUSE Bug 1243117
https://www.suse.com/security/cve/CVE-2024-28956/
SUSE CVE CVE-2024-28956 page
https://www.suse.com/security/cve/CVE-2025-1713/
SUSE CVE CVE-2025-1713 page

Описание

Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Затронутые продукты

Image SLES12-SP5-EC2-BYOS:xen-libs-4.12.4_60-3.127.1

Image SLES12-SP5-EC2-BYOS:xen-tools-domU-4.12.4_60-3.127.1

Image SLES12-SP5-EC2-ECS-On-Demand:xen-libs-4.12.4_60-3.127.1

Image SLES12-SP5-EC2-ECS-On-Demand:xen-tools-domU-4.12.4_60-3.127.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-28956.html
CVE-2024-28956
https://bugzilla.suse.com/1242006
SUSE Bug 1242006
https://bugzilla.suse.com/1243123
SUSE Bug 1243123

Описание

When setting up interrupt remapping for legacy PCI(-X) devices, including PCI(-X) bridges, a lookup of the upstream bridge is required. This lookup, itself involving acquiring of a lock, is done in a context where acquiring that lock is unsafe. This can lead to a deadlock.

Затронутые продукты

Image SLES12-SP5-EC2-BYOS:xen-libs-4.12.4_60-3.127.1

Image SLES12-SP5-EC2-BYOS:xen-tools-domU-4.12.4_60-3.127.1

Image SLES12-SP5-EC2-ECS-On-Demand:xen-libs-4.12.4_60-3.127.1

Image SLES12-SP5-EC2-ECS-On-Demand:xen-tools-domU-4.12.4_60-3.127.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-1713.html
CVE-2025-1713
https://bugzilla.suse.com/1238043
SUSE Bug 1238043

SUSE-SU-2025:02290-1

Описание

Список пакетов

Image SLES12-SP5-EC2-BYOS

Image SLES12-SP5-EC2-ECS-On-Demand

Image SLES12-SP5-EC2-On-Demand

Image SLES12-SP5-EC2-SAP-BYOS

Image SLES12-SP5-EC2-SAP-On-Demand

SUSE Linux Enterprise Server LTSS Extended Security 12 SP5

Ссылки

Уязвимость: CVE-2024-28956

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2025-1713

Описание

Затронутые продукты

Ссылки