Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2021:1301-1

Опубликовано: 21 сент. 2021
Источник: suse-cvrf

Описание

Security update for xen

This update for xen fixes the following issues:

  • CVE-2021-28701: Fixed race condition in XENMAPSPACE_grant_table handling (XSA-384) (bsc#1189632).

  • Upstream bug fixes (bsc#1027519)

This update was imported from the SUSE:SLE-15-SP2:Update update project.

Список пакетов

openSUSE Leap 15.2
xen-4.13.3_04-lp152.2.30.1
xen-devel-4.13.3_04-lp152.2.30.1
xen-doc-html-4.13.3_04-lp152.2.30.1
xen-libs-4.13.3_04-lp152.2.30.1
xen-libs-32bit-4.13.3_04-lp152.2.30.1
xen-tools-4.13.3_04-lp152.2.30.1
xen-tools-domU-4.13.3_04-lp152.2.30.1
xen-tools-xendomains-wait-disk-4.13.3_04-lp152.2.30.1

Ссылки

Описание

Another race in XENMAPSPACE_grant_table handling Guests are permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, are de-allocated when a guest switches (back) from v2 to v1. Freeing such pages requires that the hypervisor enforce that no parallel request can result in the addition of a mapping of such a page to a guest. That enforcement was missing, allowing guests to retain access to pages that were freed and perhaps re-used for other purposes. Unfortunately, when XSA-379 was being prepared, this similar issue was not noticed.

Затронутые продукты
openSUSE Leap 15.2:xen-4.13.3_04-lp152.2.30.1
openSUSE Leap 15.2:xen-devel-4.13.3_04-lp152.2.30.1
openSUSE Leap 15.2:xen-doc-html-4.13.3_04-lp152.2.30.1
openSUSE Leap 15.2:xen-libs-32bit-4.13.3_04-lp152.2.30.1
Ссылки