| Description: | Summary:
The remote host is missing an update for the 'Xen'
package(s) announced via the referenced advisory.
Vulnerability Insight:
The SUSE Linux Enterprise Server 11 Service Pack 1 LTSS Xen
hypervisor and toolset have been updated to fix various
security issues and some bugs.
The following security issues have been addressed:
*
XSA-84: CVE-2014-1894: Xen 3.2 (and presumably
earlier) exhibit both problems with the overflow issue
being present for more than just the suboperations listed
above. (bnc#860163)
*
XSA-84: CVE-2014-1892 CVE-2014-1893: Xen 3.3 through
4.1, while not affected by the above overflow, have a
different overflow issue on FLASK_{GET, SET}BOOL and expose
unreasonably large memory allocation to arbitrary guests.
(bnc#860163)
*
XSA-84: CVE-2014-1891: The FLASK_{GET, SET}BOOL,
FLASK_USER and FLASK_CONTEXT_TO_SID suboperations of the
flask hypercall are vulnerable to an integer overflow on
the input size. The hypercalls attempt to allocate a buffer
which is 1 larger than this size and is therefore
vulnerable to integer overflow and an attempt to allocate
then access a zero byte buffer. (bnc#860163)
*
XSA-82: CVE-2013-6885: The microcode on AMD 16h 00h
through 0Fh processors does not properly handle the
interaction between locked instructions and write-combined
memory types, which allows local users to cause a denial of
service (system hang) via a crafted application, aka the
errata 793 issue. (bnc#853049)
*
XSA-76: CVE-2013-4554: Xen 3.0.3 through 4.1.x
(possibly 4.1.6.1), 4.2.x (possibly 4.2.3), and 4.3.x
(possibly 4.3.1) does not properly prevent access to
hypercalls, which allows local guest users to gain
privileges via a crafted application running in ring 1 or
2. (bnc#849668)
*
XSA-74: CVE-2013-4553: The XEN_DOMCTL_getmemlist
hypercall in Xen 3.4.x through 4.3.x (possibly 4.3.1) does
not always obtain the page_alloc_lock and mm_rwlock in the
same order, which allows local guest administrators to
cause a denial of service (host deadlock). (bnc#849667)
*
XSA-73: CVE-2013-4494: Xen before 4.1.x, 4.2.x, and
4.3.x does not take the page_alloc_lock and
grant_table.lock in the same order, which allows local
guest administrators with access to multiple vcpus to cause
a denial of service (host deadlock) via unspecified
vectors. (bnc#848657)
*
XSA-67: CVE-2013-4368: The outs instruction emulation
in Xen 3.1.x, 4.2.x, 4.3.x, and earlier, when using FS: or
GS: segment override, uses an uninitialized variable as a
segment base, which allows local 64-bit PV guests to obtain
sensitive information (hypervisor stack content) via
unspecified vectors related to stale d ...
Description truncated, please see the referenced URL(s) for more information.
Affected Software/OS:
Xen on SUSE Linux Enterprise Server 11 SP1 LTSS
Solution:
Please install the updated package(s).
CVSS Score:
9.3
CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
