Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2021:3140-1

Опубликовано: 18 сент. 2021
Источник: suse-cvrf

Описание

Security update for xen

This update for xen fixes the following issues:

  • CVE-2021-28701: Fixed race condition in XENMAPSPACE_grant_table handling (XSA-384) (bsc#1189632).

  • Upstream bug fixes (bsc#1027519)

Список пакетов

openSUSE Leap 15.3
xen-4.14.2_06-3.12.1
xen-devel-4.14.2_06-3.12.1
xen-doc-html-4.14.2_06-3.12.1
xen-libs-4.14.2_06-3.12.1
xen-libs-32bit-4.14.2_06-3.12.1
xen-tools-4.14.2_06-3.12.1
xen-tools-domU-4.14.2_06-3.12.1
xen-tools-xendomains-wait-disk-4.14.2_06-3.12.1

Ссылки

Описание

Another race in XENMAPSPACE_grant_table handling Guests are permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, are de-allocated when a guest switches (back) from v2 to v1. Freeing such pages requires that the hypervisor enforce that no parallel request can result in the addition of a mapping of such a page to a guest. That enforcement was missing, allowing guests to retain access to pages that were freed and perhaps re-used for other purposes. Unfortunately, when XSA-379 was being prepared, this similar issue was not noticed.

Затронутые продукты
openSUSE Leap 15.3:xen-4.14.2_06-3.12.1
openSUSE Leap 15.3:xen-devel-4.14.2_06-3.12.1
openSUSE Leap 15.3:xen-doc-html-4.14.2_06-3.12.1
openSUSE Leap 15.3:xen-libs-32bit-4.14.2_06-3.12.1
Ссылки