SUSE-SU-2026:1092-1

Опубликовано: 26 мар. 2026

Источник: suse-cvrf

Описание

Security update for xen

This update for xen fixes the following issues:

CVE-2026-23554: xen: Use after free of paging structures in EPT (bsc#1259247, XSA-480)

Список пакетов

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS

xen-4.17.6_06-150500.3.62.2

xen-devel-4.17.6_06-150500.3.62.2

xen-libs-4.17.6_06-150500.3.62.2

xen-tools-4.17.6_06-150500.3.62.2

xen-tools-domU-4.17.6_06-150500.3.62.2

xen-tools-xendomains-wait-disk-4.17.6_06-150500.3.62.2

SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS

xen-4.17.6_06-150500.3.62.2

xen-devel-4.17.6_06-150500.3.62.2

xen-libs-4.17.6_06-150500.3.62.2

xen-tools-4.17.6_06-150500.3.62.2

xen-tools-domU-4.17.6_06-150500.3.62.2

xen-tools-xendomains-wait-disk-4.17.6_06-150500.3.62.2

SUSE Linux Enterprise Micro 5.5

xen-libs-4.17.6_06-150500.3.62.2

SUSE Linux Enterprise Server 15 SP5-LTSS

xen-4.17.6_06-150500.3.62.2

xen-devel-4.17.6_06-150500.3.62.2

xen-libs-4.17.6_06-150500.3.62.2

xen-tools-4.17.6_06-150500.3.62.2

xen-tools-domU-4.17.6_06-150500.3.62.2

xen-tools-xendomains-wait-disk-4.17.6_06-150500.3.62.2

SUSE Linux Enterprise Server for SAP Applications 15 SP5

xen-4.17.6_06-150500.3.62.2

xen-devel-4.17.6_06-150500.3.62.2

xen-libs-4.17.6_06-150500.3.62.2

xen-tools-4.17.6_06-150500.3.62.2

xen-tools-domU-4.17.6_06-150500.3.62.2

xen-tools-xendomains-wait-disk-4.17.6_06-150500.3.62.2

Ссылки

https://www.suse.com/support/update/announcement/2026/suse-su-20261092-1/
Link for SUSE-SU-2026:1092-1
https://lists.suse.com/pipermail/sle-security-updates/2026-March/024965.html
E-Mail link for SUSE-SU-2026:1092-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1259247
SUSE Bug 1259247
https://www.suse.com/security/cve/CVE-2026-23554/
SUSE CVE CVE-2026-23554 page

Описание

The Intel EPT paging code uses an optimization to defer flushing of any cached EPT state until the p2m lock is dropped, so that multiple modifications done under the same locked region only issue a single flush. Freeing of paging structures however is not deferred until the flushing is done, and can result in freed pages transiently being present in cached state. Such stale entries can point to memory ranges not owned by the guest, thus allowing access to unintended memory regions.

Затронутые продукты

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:xen-4.17.6_06-150500.3.62.2

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:xen-devel-4.17.6_06-150500.3.62.2

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:xen-libs-4.17.6_06-150500.3.62.2

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:xen-tools-4.17.6_06-150500.3.62.2

Ссылки

https://www.suse.com/security/cve/CVE-2026-23554.html
CVE-2026-23554
https://bugzilla.suse.com/1259247
SUSE Bug 1259247

SUSE-SU-2026:1092-1

Описание

Список пакетов

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS

SUSE Linux Enterprise Micro 5.5

SUSE Linux Enterprise Server 15 SP5-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP5

Ссылки

Уязвимость: CVE-2026-23554

Описание

Затронутые продукты

Ссылки