Описание
Security update for xen
This update for xen fixes the following issues:
- CVE-2025-1713: Fixed potential deadlock with VT-d and legacy PCI device pass-through (bsc#1238043)
Other fixes:
- Xen channels and domU console (bsc#1219354)
- Fixed attempting to start guest vm's libxl fills disk with errors (bsc#1237692)
- Xen call trace and APIC Error found after reboot operation on AMD machines (bsc#1233796).
- Upstream bug fixes (bsc#1027519).
Список пакетов
Image SLES15-SP6
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-Azure-3P
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-Azure-Basic
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-Azure-Standard
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-BYOS
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-BYOS-Azure
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-BYOS-EC2
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-BYOS-GCE
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-CHOST-BYOS
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-CHOST-BYOS-Aliyun
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-CHOST-BYOS-Azure
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-CHOST-BYOS-EC2
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-CHOST-BYOS-GCE
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-CHOST-BYOS-GDC
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-CHOST-BYOS-SAP-CCloud
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-EC2
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-EC2-ECS-HVM
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-GCE
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-HPC
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-HPC-Azure
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-HPC-BYOS
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-HPC-BYOS-Azure
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-HPC-BYOS-EC2
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-HPC-BYOS-GCE
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-HPC-EC2
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-HPC-GCE
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-Hardened-BYOS
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-Hardened-BYOS-Azure
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-Hardened-BYOS-EC2
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-Hardened-BYOS-GCE
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Azure
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Azure-3P
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Azure-LI-BYOS
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-BYOS
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-BYOS-Azure
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-BYOS-EC2
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-BYOS-GCE
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-EC2
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-GCE
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Hardened
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Hardened-Azure
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Hardened-BYOS
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Hardened-BYOS-Azure
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Hardened-BYOS-EC2
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Hardened-BYOS-GCE
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Hardened-EC2
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAP-Hardened-GCE
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAPCAL
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAPCAL-Azure
xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAPCAL-EC2
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
Image SLES15-SP6-SAPCAL-GCE
xen-libs-4.18.4_06-150600.3.20.1
SUSE Linux Enterprise Module for Basesystem 15 SP6
xen-libs-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
SUSE Linux Enterprise Module for Server Applications 15 SP6
xen-4.18.4_06-150600.3.20.1
xen-devel-4.18.4_06-150600.3.20.1
xen-tools-4.18.4_06-150600.3.20.1
xen-tools-xendomains-wait-disk-4.18.4_06-150600.3.20.1
openSUSE Leap 15.6
xen-4.18.4_06-150600.3.20.1
xen-devel-4.18.4_06-150600.3.20.1
xen-doc-html-4.18.4_06-150600.3.20.1
xen-libs-4.18.4_06-150600.3.20.1
xen-libs-32bit-4.18.4_06-150600.3.20.1
xen-tools-4.18.4_06-150600.3.20.1
xen-tools-domU-4.18.4_06-150600.3.20.1
xen-tools-xendomains-wait-disk-4.18.4_06-150600.3.20.1
Ссылки
- Link for SUSE-SU-2025:1162-1
- E-Mail link for SUSE-SU-2025:1162-1
- SUSE Security Ratings
- SUSE Bug 1027519
- SUSE Bug 1219354
- SUSE Bug 1233796
- SUSE Bug 1237692
- SUSE Bug 1238043
- SUSE CVE CVE-2025-1713 page
Описание
When setting up interrupt remapping for legacy PCI(-X) devices, including PCI(-X) bridges, a lookup of the upstream bridge is required. This lookup, itself involving acquiring of a lock, is done in a context where acquiring that lock is unsafe. This can lead to a deadlock.
Затронутые продукты
Image SLES15-SP6-Azure-3P:xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-Azure-Basic:xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-Azure-Standard:xen-libs-4.18.4_06-150600.3.20.1
Image SLES15-SP6-BYOS-Azure:xen-libs-4.18.4_06-150600.3.20.1
Ссылки
- CVE-2025-1713
- SUSE Bug 1238043