Security update for xen SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2017:0005-1 Final 1 1 2017-01-02T08:12:49Z current 2017-01-02T08:12:49Z 2017-01-02T08:12:49Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for xen This update for xen fixes the following issues: - A Mishandling of SYSCALL singlestep during emulation which could have lead to privilege escalation. (XSA-204, bsc#1016340, CVE-2016-10013) - CMPXCHG8B emulation failed to ignore operand size override which could have lead to information disclosure. (XSA-200, bsc#1012651, CVE-2016-9932) - PV guests may have been able to mask interrupts causing a Denial of Service. (XSA-202, bsc#1014298, CVE-2016-10024) - A missing NULL pointer check in VMFUNC emulation could lead to a hypervisor crash leading to a Denial of Servce. (XSA-203, bsc#1014300, CVE-2016-10025) This update was imported from the SUSE:SLE-12-SP2:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2017-01/msg00001.html E-Mail link for openSUSE-SU-2017:0005-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.2 xen-4.7.1_04-6.1 xen-devel-4.7.1_04-6.1 xen-doc-html-4.7.1_04-6.1 xen-libs-4.7.1_04-6.1 xen-libs-32bit-4.7.1_04-6.1 xen-tools-4.7.1_04-6.1 xen-tools-domU-4.7.1_04-6.1 xen-4.7.1_04-6.1 as a component of openSUSE Leap 42.2 xen-devel-4.7.1_04-6.1 as a component of openSUSE Leap 42.2 xen-doc-html-4.7.1_04-6.1 as a component of openSUSE Leap 42.2 xen-libs-4.7.1_04-6.1 as a component of openSUSE Leap 42.2 xen-libs-32bit-4.7.1_04-6.1 as a component of openSUSE Leap 42.2 xen-tools-4.7.1_04-6.1 as a component of openSUSE Leap 42.2 xen-tools-domU-4.7.1_04-6.1 as a component of openSUSE Leap 42.2 Xen through 4.8.x allows local 64-bit x86 HVM guest OS users to gain privileges by leveraging mishandling of SYSCALL singlestep during emulation. CVE-2016-10013 openSUSE Leap 42.2:xen-4.7.1_04-6.1 openSUSE Leap 42.2:xen-devel-4.7.1_04-6.1 openSUSE Leap 42.2:xen-doc-html-4.7.1_04-6.1 openSUSE Leap 42.2:xen-libs-32bit-4.7.1_04-6.1 openSUSE Leap 42.2:xen-libs-4.7.1_04-6.1 openSUSE Leap 42.2:xen-tools-4.7.1_04-6.1 openSUSE Leap 42.2:xen-tools-domU-4.7.1_04-6.1 moderate 6.6 AV:L/AC:M/Au:S/C:C/I:C/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2017-01/msg00001.html https://www.suse.com/security/cve/CVE-2016-10013.html CVE-2016-10013 https://bugzilla.suse.com/1016340 SUSE Bug 1016340 Xen through 4.8.x allows local x86 PV guest OS kernel administrators to cause a denial of service (host hang or crash) by modifying the instruction stream asynchronously while performing certain kernel operations. CVE-2016-10024 openSUSE Leap 42.2:xen-4.7.1_04-6.1 openSUSE Leap 42.2:xen-devel-4.7.1_04-6.1 openSUSE Leap 42.2:xen-doc-html-4.7.1_04-6.1 openSUSE Leap 42.2:xen-libs-32bit-4.7.1_04-6.1 openSUSE Leap 42.2:xen-libs-4.7.1_04-6.1 openSUSE Leap 42.2:xen-tools-4.7.1_04-6.1 openSUSE Leap 42.2:xen-tools-domU-4.7.1_04-6.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2017-01/msg00001.html https://www.suse.com/security/cve/CVE-2016-10024.html CVE-2016-10024 https://bugzilla.suse.com/1014298 SUSE Bug 1014298 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 VMFUNC emulation in Xen 4.6.x through 4.8.x on x86 systems using AMD virtualization extensions (aka SVM) allows local HVM guest OS users to cause a denial of service (hypervisor crash) by leveraging a missing NULL pointer check. CVE-2016-10025 openSUSE Leap 42.2:xen-4.7.1_04-6.1 openSUSE Leap 42.2:xen-devel-4.7.1_04-6.1 openSUSE Leap 42.2:xen-doc-html-4.7.1_04-6.1 openSUSE Leap 42.2:xen-libs-32bit-4.7.1_04-6.1 openSUSE Leap 42.2:xen-libs-4.7.1_04-6.1 openSUSE Leap 42.2:xen-tools-4.7.1_04-6.1 openSUSE Leap 42.2:xen-tools-domU-4.7.1_04-6.1 moderate 4.4 AV:L/AC:M/Au:S/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2017-01/msg00001.html https://www.suse.com/security/cve/CVE-2016-10025.html CVE-2016-10025 https://bugzilla.suse.com/1014300 SUSE Bug 1014300 CMPXCHG8B emulation in Xen 3.3.x through 4.7.x on x86 systems allows local HVM guest OS users to obtain sensitive information from host stack memory via a "supposedly-ignored" operand size prefix. CVE-2016-9932 openSUSE Leap 42.2:xen-4.7.1_04-6.1 openSUSE Leap 42.2:xen-devel-4.7.1_04-6.1 openSUSE Leap 42.2:xen-doc-html-4.7.1_04-6.1 openSUSE Leap 42.2:xen-libs-32bit-4.7.1_04-6.1 openSUSE Leap 42.2:xen-libs-4.7.1_04-6.1 openSUSE Leap 42.2:xen-tools-4.7.1_04-6.1 openSUSE Leap 42.2:xen-tools-domU-4.7.1_04-6.1 moderate 1 AV:L/AC:H/Au:S/C:P/I:N/A:N Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2017-01/msg00001.html https://www.suse.com/security/cve/CVE-2016-9932.html CVE-2016-9932 https://bugzilla.suse.com/1012651 SUSE Bug 1012651 https://bugzilla.suse.com/1016340 SUSE Bug 1016340