SUSE-SU-2015:0940-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2015:0940-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2015:0940-1
- Related
- Published
- 2012-11-22T17:59:15Z
- Modified
- 2012-11-22T17:59:15Z
- Summary
- Security update for Xen
- Details
-
This update fixes the following security issues in Xen:
* CVE-2012-5510: Grant table version switch list corruption vulnerability (XSA-26) * CVE-2012-5511: Several HVM operations do not validate the range of their inputs (XSA-27) * CVE-2012-5513: XENMEM_exchange may overwrite hypervisor memory (XSA-29) * CVE-2012-5514: Missing unlock in guest_physmap_mark_populate_on_demand() (XSA-30) * CVE-2012-5515: Several memory hypercall operations allow invalid extent order values (XSA-31)Also the following fix has been applied:
* bnc#777628 - guest 'disappears' after live migration Updated block-dmmd scriptSecurity Issues references:
* CVE-2012-5513 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5513> * CVE-2012-5514 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5514> * CVE-2012-5511 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5511> * CVE-2012-5510 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5510> * CVE-2012-5515 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5515> - References
-
- https://www.suse.com/support/update/announcement/2015/suse-su-20150940-1/
- https://bugzilla.suse.com/777628
- https://bugzilla.suse.com/789944
- https://bugzilla.suse.com/789945
- https://bugzilla.suse.com/789948
- https://bugzilla.suse.com/789950
- https://bugzilla.suse.com/789951
- https://bugzilla.suse.com/826717
- https://bugzilla.suse.com/880751
- https://bugzilla.suse.com/895798
- https://bugzilla.suse.com/895799
- https://bugzilla.suse.com/895802
- https://bugzilla.suse.com/903850
- https://bugzilla.suse.com/903967
- https://bugzilla.suse.com/903970
- https://bugzilla.suse.com/905465
- https://bugzilla.suse.com/905467
- https://bugzilla.suse.com/906439
- https://bugzilla.suse.com/927967
- https://bugzilla.suse.com/929339
- https://www.suse.com/security/cve/CVE-2012-5510
- https://www.suse.com/security/cve/CVE-2012-5511
- https://www.suse.com/security/cve/CVE-2012-5513
- https://www.suse.com/security/cve/CVE-2012-5514
- https://www.suse.com/security/cve/CVE-2012-5515
- https://www.suse.com/security/cve/CVE-2013-3495
- https://www.suse.com/security/cve/CVE-2014-4021
- https://www.suse.com/security/cve/CVE-2014-7154
- https://www.suse.com/security/cve/CVE-2014-7155
- https://www.suse.com/security/cve/CVE-2014-7156
- https://www.suse.com/security/cve/CVE-2014-8594
- https://www.suse.com/security/cve/CVE-2014-8595
- https://www.suse.com/security/cve/CVE-2014-8866
- https://www.suse.com/security/cve/CVE-2014-8867
- https://www.suse.com/security/cve/CVE-2014-9030
- https://www.suse.com/security/cve/CVE-2015-3340
- https://www.suse.com/security/cve/CVE-2015-3456