Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2026:2066-1

Опубликовано: 26 мая 2026
Источник: suse-cvrf

Описание

Security update for xen

This update for xen fixes the following issues

  • CVE-2025-54505: Floating Point Divider State Sampling on AMD CPUs AMD-SN-7053 (bsc#1262428).
  • CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264066).
  • CVE-2026-23557: Xenstored DoS via XS_RESET_WATCHES command (bsc#1262178).
  • CVE-2026-23558: grant table v2 race in status page mapping (bsc#1262180).

Список пакетов

Image SLES12-SP5-EC2-BYOS
xen-libs-4.12.4_68-3.142.1
xen-tools-domU-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-ECS-On-Demand
xen-libs-4.12.4_68-3.142.1
xen-tools-domU-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-On-Demand
xen-libs-4.12.4_68-3.142.1
xen-tools-domU-4.12.4_68-3.142.1
SUSE Linux Enterprise Server 12 SP5-LTSS
xen-4.12.4_68-3.142.1
xen-devel-4.12.4_68-3.142.1
xen-doc-html-4.12.4_68-3.142.1
xen-libs-4.12.4_68-3.142.1
xen-libs-32bit-4.12.4_68-3.142.1
xen-tools-4.12.4_68-3.142.1
xen-tools-domU-4.12.4_68-3.142.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
xen-4.12.4_68-3.142.1
xen-devel-4.12.4_68-3.142.1
xen-doc-html-4.12.4_68-3.142.1
xen-libs-4.12.4_68-3.142.1
xen-libs-32bit-4.12.4_68-3.142.1
xen-tools-4.12.4_68-3.142.1
xen-tools-domU-4.12.4_68-3.142.1

Ссылки

Описание

A transient execution vulnerability within AMD CPUs may allow a local user-privileged attacker to leak data via the floating point divisor unit, potentially resulting in loss of confidentiality.

Затронутые продукты
Image SLES12-SP5-EC2-BYOS:xen-libs-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-BYOS:xen-tools-domU-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-ECS-On-Demand:xen-libs-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-ECS-On-Demand:xen-tools-domU-4.12.4_68-3.142.1
Ссылки

Описание

Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.

Затронутые продукты
Image SLES12-SP5-EC2-BYOS:xen-libs-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-BYOS:xen-tools-domU-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-ECS-On-Demand:xen-libs-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-ECS-On-Demand:xen-tools-domU-4.12.4_68-3.142.1
Ссылки

Описание

Any guest can cause xenstored to crash by issuing a XS_RESET_WATCHES command within a transaction due to an assert() triggering. In case xenstored was built with NDEBUG #defined nothing bad will happen, as assert() is doing nothing in this case. Note that the default is not to define NDEBUG for xenstored builds even in release builds of Xen.

Затронутые продукты
Image SLES12-SP5-EC2-BYOS:xen-libs-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-BYOS:xen-tools-domU-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-ECS-On-Demand:xen-libs-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-ECS-On-Demand:xen-tools-domU-4.12.4_68-3.142.1
Ссылки

Описание

The adjustments made for XSA-379 as well as those subsequently becoming XSA-387 still left a race window, when a HVM or PVH guest does a grant table version change from v2 to v1 in parallel with mapping the status page(s) via XENMEM_add_to_physmap. Some of the status pages may then be freed while mappings of them would still be inserted into the guest's secondary (P2M) page tables.

Затронутые продукты
Image SLES12-SP5-EC2-BYOS:xen-libs-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-BYOS:xen-tools-domU-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-ECS-On-Demand:xen-libs-4.12.4_68-3.142.1
Image SLES12-SP5-EC2-ECS-On-Demand:xen-tools-domU-4.12.4_68-3.142.1
Ссылки