Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-28704 (GCVE-0-2021-28704)
Vulnerability from cvelistv5 – Published: 2021-11-24 00:00 – Updated: 2024-08-03 21:47
VLAI?
EPSS
Summary
PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).
Severity ?
No CVSS data available.
CWE
- unknown
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
Impacted products
Credits
{'credit_data': {'description': {'description_data': [{'lang': 'eng', 'value': 'This issue was discovered by Jan Beulich of SUSE.'}]}}}
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T21:47:33.115Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://xenbits.xenproject.org/xsa/advisory-388.txt"
},
{
"name": "FEDORA-2021-03645e9807",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/"
},
{
"name": "DSA-5017",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2021/dsa-5017"
},
{
"name": "FEDORA-2021-2b3a2de94f",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/"
},
{
"name": "GLSA-202402-07",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202402-07"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "xen",
"vendor": "Xen",
"versions": [
{
"status": "affected",
"version": "xen-unstable"
}
]
},
{
"product": "xen",
"vendor": "Xen",
"versions": [
{
"lessThan": "4.12",
"status": "unknown",
"version": "unspecified",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "affected",
"version": "4.12.x",
"versionType": "custom"
},
{
"lessThan": "unspecified",
"status": "unaffected",
"version": "next of 4.14.x",
"versionType": "custom"
}
]
},
{
"product": "xen",
"vendor": "Xen",
"versions": [
{
"status": "affected",
"version": "4.15.x"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "{\u0027credit_data\u0027: {\u0027description\u0027: {\u0027description_data\u0027: [{\u0027lang\u0027: \u0027eng\u0027, \u0027value\u0027: \u0027This issue was discovered by Jan Beulich of SUSE.\u0027}]}}}"
}
],
"descriptions": [
{
"lang": "en",
"value": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2)."
}
],
"metrics": [
{
"other": {
"content": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Malicious or buggy guest kernels may be able to mount a Denial of\nService (DoS) attack affecting the entire system. Privilege escalation\nand information leaks cannot be ruled out."
}
]
}
},
"type": "unknown"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "unknown",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-02-04T08:06:55.345587",
"orgId": "23aa2041-22e1-471f-9209-9b7396fa234f",
"shortName": "XEN"
},
"references": [
{
"url": "https://xenbits.xenproject.org/xsa/advisory-388.txt"
},
{
"name": "FEDORA-2021-03645e9807",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/"
},
{
"name": "DSA-5017",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2021/dsa-5017"
},
{
"name": "FEDORA-2021-2b3a2de94f",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/"
},
{
"name": "GLSA-202402-07",
"tags": [
"vendor-advisory"
],
"url": "https://security.gentoo.org/glsa/202402-07"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "23aa2041-22e1-471f-9209-9b7396fa234f",
"assignerShortName": "XEN",
"cveId": "CVE-2021-28704",
"datePublished": "2021-11-24T00:00:00",
"dateReserved": "2021-03-18T00:00:00",
"dateUpdated": "2024-08-03T21:47:33.115Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*\", \"versionStartIncluding\": \"4.7.0\", \"versionEndIncluding\": \"4.15.1\", \"matchCriteriaId\": \"F23764AD-488F-4ABC-95D5-FC1F64E0BC2E\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A930E247-0B43-43CB-98FF-6CE7B8189835\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"80E516C0-98A4-4ADE-B69F-66A772E2BAAA\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).\"}, {\"lang\": \"es\", \"value\": \"Operaciones PoD en GFNs desalineados [Este registro de informaci\\u00f3n CNA se relaciona con m\\u00faltiples CVEs; el texto explica qu\\u00e9 aspectos/vulnerabilidades corresponden a cada CVE. Los hu\\u00e9spedes x86 HVM y PVH pueden iniciarse en modo populate-on-demand (PoD), para proporcionar una manera de que m\\u00e1s tarde les sea asignado f\\u00e1cilmente m\\u00e1s memoria. A los hu\\u00e9spedes les es permitido controlar determinados aspectos P2M de p\\u00e1ginas individuales por medio de hypercalls. Estas hypercalls pueden actuar sobre rangos de p\\u00e1ginas especificados por medio de \\u00f3rdenes de p\\u00e1ginas (resultando en un n\\u00famero de p\\u00e1ginas de potencia 2). La implementaci\\u00f3n de algunas de estas hypercalls para PoD no obliga a que el n\\u00famero de fotograma de la p\\u00e1gina base est\\u00e9 apropiadamente alineado para el orden especificado, aunque algunos c\\u00f3digos involucrados en el manejo de PoD realmente hacen tal suposici\\u00f3n. Estas operaciones son XENMEM_decrease_reservation (CVE-2021-28704) y XENMEM_populate_physmap (CVE-2021-28707), esta \\u00faltima usable s\\u00f3lo por los dominios que controlan el hu\\u00e9sped, es decir, un qemu no privilegiado o un dominio stub. (Parche 1, que combina la correcci\\u00f3n de estos dos problemas.) Adem\\u00e1s, el manejo de XENMEM_decrease_reservation tambi\\u00e9n puede desencadenar un bloqueo en el host cuando el orden de p\\u00e1gina especificado no es ni 4k ni 2M ni 1G (CVE-2021-28708, parche 2)\"}]",
"id": "CVE-2021-28704",
"lastModified": "2024-11-21T06:00:10.827",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.0, \"impactScore\": 6.0}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 6.9, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.4, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2021-11-24T01:15:08.030",
"references": "[{\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/\", \"source\": \"security@xen.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/\", \"source\": \"security@xen.org\"}, {\"url\": \"https://security.gentoo.org/glsa/202402-07\", \"source\": \"security@xen.org\"}, {\"url\": \"https://www.debian.org/security/2021/dsa-5017\", \"source\": \"security@xen.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://xenbits.xenproject.org/xsa/advisory-388.txt\", \"source\": \"security@xen.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.gentoo.org/glsa/202402-07\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.debian.org/security/2021/dsa-5017\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://xenbits.xenproject.org/xsa/advisory-388.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]",
"sourceIdentifier": "security@xen.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-28704\",\"sourceIdentifier\":\"security@xen.org\",\"published\":\"2021-11-24T01:15:08.030\",\"lastModified\":\"2024-11-21T06:00:10.827\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).\"},{\"lang\":\"es\",\"value\":\"Operaciones PoD en GFNs desalineados [Este registro de informaci\u00f3n CNA se relaciona con m\u00faltiples CVEs; el texto explica qu\u00e9 aspectos/vulnerabilidades corresponden a cada CVE. Los hu\u00e9spedes x86 HVM y PVH pueden iniciarse en modo populate-on-demand (PoD), para proporcionar una manera de que m\u00e1s tarde les sea asignado f\u00e1cilmente m\u00e1s memoria. A los hu\u00e9spedes les es permitido controlar determinados aspectos P2M de p\u00e1ginas individuales por medio de hypercalls. Estas hypercalls pueden actuar sobre rangos de p\u00e1ginas especificados por medio de \u00f3rdenes de p\u00e1ginas (resultando en un n\u00famero de p\u00e1ginas de potencia 2). La implementaci\u00f3n de algunas de estas hypercalls para PoD no obliga a que el n\u00famero de fotograma de la p\u00e1gina base est\u00e9 apropiadamente alineado para el orden especificado, aunque algunos c\u00f3digos involucrados en el manejo de PoD realmente hacen tal suposici\u00f3n. Estas operaciones son XENMEM_decrease_reservation (CVE-2021-28704) y XENMEM_populate_physmap (CVE-2021-28707), esta \u00faltima usable s\u00f3lo por los dominios que controlan el hu\u00e9sped, es decir, un qemu no privilegiado o un dominio stub. (Parche 1, que combina la correcci\u00f3n de estos dos problemas.) Adem\u00e1s, el manejo de XENMEM_decrease_reservation tambi\u00e9n puede desencadenar un bloqueo en el host cuando el orden de p\u00e1gina especificado no es ni 4k ni 2M ni 1G (CVE-2021-28708, parche 2)\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.0,\"impactScore\":6.0}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":6.9,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.4,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*\",\"versionStartIncluding\":\"4.7.0\",\"versionEndIncluding\":\"4.15.1\",\"matchCriteriaId\":\"F23764AD-488F-4ABC-95D5-FC1F64E0BC2E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A930E247-0B43-43CB-98FF-6CE7B8189835\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80E516C0-98A4-4ADE-B69F-66A772E2BAAA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}],\"references\":[{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/\",\"source\":\"security@xen.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/\",\"source\":\"security@xen.org\"},{\"url\":\"https://security.gentoo.org/glsa/202402-07\",\"source\":\"security@xen.org\"},{\"url\":\"https://www.debian.org/security/2021/dsa-5017\",\"source\":\"security@xen.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://xenbits.xenproject.org/xsa/advisory-388.txt\",\"source\":\"security@xen.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/202402-07\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.debian.org/security/2021/dsa-5017\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://xenbits.xenproject.org/xsa/advisory-388.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}"
}
}
SUSE-SU-2021:3888-1
Vulnerability from csaf_suse - Published: 2021-12-03 08:47 - Updated: 2021-12-03 08:47Summary
Security update for xen
Notes
Title of the patch
Security update for xen
Description of the patch
This update for xen fixes the following issues:
- CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363).
- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).
- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).
- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).
- Update to Xen 4.13.4 bug fix release (bsc#1027519).
Patchnames
SUSE-2021-3888,SUSE-SLE-Module-Basesystem-15-SP2-2021-3888,SUSE-SLE-Module-Server-Applications-15-SP2-2021-3888,SUSE-SUSE-MicroOS-5.0-2021-3888
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363).\n- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).\n- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).\n- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).\n\n- Update to Xen 4.13.4 bug fix release (bsc#1027519).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-3888,SUSE-SLE-Module-Basesystem-15-SP2-2021-3888,SUSE-SLE-Module-Server-Applications-15-SP2-2021-3888,SUSE-SUSE-MicroOS-5.0-2021-3888",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3888-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:3888-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213888-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:3888-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009826.html"
},
{
"category": "self",
"summary": "SUSE Bug 1027519",
"url": "https://bugzilla.suse.com/1027519"
},
{
"category": "self",
"summary": "SUSE Bug 1191363",
"url": "https://bugzilla.suse.com/1191363"
},
{
"category": "self",
"summary": "SUSE Bug 1192554",
"url": "https://bugzilla.suse.com/1192554"
},
{
"category": "self",
"summary": "SUSE Bug 1192557",
"url": "https://bugzilla.suse.com/1192557"
},
{
"category": "self",
"summary": "SUSE Bug 1192559",
"url": "https://bugzilla.suse.com/1192559"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28702 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28704 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28705 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28706 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28707 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28708 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28709 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28709/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2021-12-03T08:47:48Z",
"generator": {
"date": "2021-12-03T08:47:48Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:3888-1",
"initial_release_date": "2021-12-03T08:47:48Z",
"revision_history": [
{
"date": "2021-12-03T08:47:48Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.13.4_02-3.40.1.aarch64",
"product": {
"name": "xen-4.13.4_02-3.40.1.aarch64",
"product_id": "xen-4.13.4_02-3.40.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.13.4_02-3.40.1.aarch64",
"product": {
"name": "xen-devel-4.13.4_02-3.40.1.aarch64",
"product_id": "xen-devel-4.13.4_02-3.40.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.13.4_02-3.40.1.aarch64",
"product": {
"name": "xen-doc-html-4.13.4_02-3.40.1.aarch64",
"product_id": "xen-doc-html-4.13.4_02-3.40.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.13.4_02-3.40.1.aarch64",
"product": {
"name": "xen-libs-4.13.4_02-3.40.1.aarch64",
"product_id": "xen-libs-4.13.4_02-3.40.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.13.4_02-3.40.1.aarch64",
"product": {
"name": "xen-tools-4.13.4_02-3.40.1.aarch64",
"product_id": "xen-tools-4.13.4_02-3.40.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.13.4_02-3.40.1.aarch64",
"product": {
"name": "xen-tools-domU-4.13.4_02-3.40.1.aarch64",
"product_id": "xen-tools-domU-4.13.4_02-3.40.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.13.4_02-3.40.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.13.4_02-3.40.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.13.4_02-3.40.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.13.4_02-3.40.1.i586",
"product": {
"name": "xen-devel-4.13.4_02-3.40.1.i586",
"product_id": "xen-devel-4.13.4_02-3.40.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.13.4_02-3.40.1.i586",
"product": {
"name": "xen-libs-4.13.4_02-3.40.1.i586",
"product_id": "xen-libs-4.13.4_02-3.40.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.13.4_02-3.40.1.i586",
"product": {
"name": "xen-tools-domU-4.13.4_02-3.40.1.i586",
"product_id": "xen-tools-domU-4.13.4_02-3.40.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch",
"product_id": "xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.13.4_02-3.40.1.x86_64",
"product": {
"name": "xen-4.13.4_02-3.40.1.x86_64",
"product_id": "xen-4.13.4_02-3.40.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.13.4_02-3.40.1.x86_64",
"product": {
"name": "xen-devel-4.13.4_02-3.40.1.x86_64",
"product_id": "xen-devel-4.13.4_02-3.40.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.13.4_02-3.40.1.x86_64",
"product": {
"name": "xen-doc-html-4.13.4_02-3.40.1.x86_64",
"product_id": "xen-doc-html-4.13.4_02-3.40.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.13.4_02-3.40.1.x86_64",
"product": {
"name": "xen-libs-4.13.4_02-3.40.1.x86_64",
"product_id": "xen-libs-4.13.4_02-3.40.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.13.4_02-3.40.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.13.4_02-3.40.1.x86_64",
"product_id": "xen-libs-32bit-4.13.4_02-3.40.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.13.4_02-3.40.1.x86_64",
"product": {
"name": "xen-tools-4.13.4_02-3.40.1.x86_64",
"product_id": "xen-tools-4.13.4_02-3.40.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"product": {
"name": "xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"product_id": "xen-tools-domU-4.13.4_02-3.40.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.0",
"product": {
"name": "SUSE Linux Enterprise Micro 5.0",
"product_id": "SUSE Linux Enterprise Micro 5.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.13.4_02-3.40.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64"
},
"product_reference": "xen-libs-4.13.4_02-3.40.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.13.4_02-3.40.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64"
},
"product_reference": "xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.13.4_02-3.40.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64"
},
"product_reference": "xen-4.13.4_02-3.40.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.13.4_02-3.40.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64"
},
"product_reference": "xen-devel-4.13.4_02-3.40.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.13.4_02-3.40.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64"
},
"product_reference": "xen-tools-4.13.4_02-3.40.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.13.4_02-3.40.1.x86_64 as component of SUSE Linux Enterprise Micro 5.0",
"product_id": "SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64"
},
"product_reference": "xen-libs-4.13.4_02-3.40.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28702"
}
],
"notes": [
{
"category": "general",
"text": "PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, \"RMRR\"). These are typically used for platform tasks such as legacy USB emulation. If such a device is passed through to a guest, then on guest shutdown the device is not properly deassigned. The IOMMU configuration for these devices which are not properly deassigned ends up pointing to a freed data structure, including the IO Pagetables. Subsequent DMA or interrupts from the device will have unpredictable behaviour, ranging from IOMMU faults to memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28702",
"url": "https://www.suse.com/security/cve/CVE-2021-28702"
},
{
"category": "external",
"summary": "SUSE Bug 1191363 for CVE-2021-28702",
"url": "https://bugzilla.suse.com/1191363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-03T08:47:48Z",
"details": "moderate"
}
],
"title": "CVE-2021-28702"
},
{
"cve": "CVE-2021-28704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28704"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28704",
"url": "https://www.suse.com/security/cve/CVE-2021-28704"
},
{
"category": "external",
"summary": "SUSE Bug 1192557 for CVE-2021-28704",
"url": "https://bugzilla.suse.com/1192557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-03T08:47:48Z",
"details": "moderate"
}
],
"title": "CVE-2021-28704"
},
{
"cve": "CVE-2021-28705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28705"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28705",
"url": "https://www.suse.com/security/cve/CVE-2021-28705"
},
{
"category": "external",
"summary": "SUSE Bug 1192559 for CVE-2021-28705",
"url": "https://bugzilla.suse.com/1192559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-03T08:47:48Z",
"details": "moderate"
}
],
"title": "CVE-2021-28705"
},
{
"cve": "CVE-2021-28706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28706"
}
],
"notes": [
{
"category": "general",
"text": "guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precision, which may overflow. It would then only be the overflowed (and hence small) number which gets compared against the established upper bound.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28706",
"url": "https://www.suse.com/security/cve/CVE-2021-28706"
},
{
"category": "external",
"summary": "SUSE Bug 1192554 for CVE-2021-28706",
"url": "https://bugzilla.suse.com/1192554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-03T08:47:48Z",
"details": "moderate"
}
],
"title": "CVE-2021-28706"
},
{
"cve": "CVE-2021-28707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28707",
"url": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-03T08:47:48Z",
"details": "moderate"
}
],
"title": "CVE-2021-28707"
},
{
"cve": "CVE-2021-28708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28708",
"url": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-03T08:47:48Z",
"details": "moderate"
}
],
"title": "CVE-2021-28708"
},
{
"cve": "CVE-2021-28709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28709",
"url": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.0:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-libs-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP2:xen-tools-domU-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-devel-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-4.13.4_02-3.40.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.4_02-3.40.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-03T08:47:48Z",
"details": "moderate"
}
],
"title": "CVE-2021-28709"
}
]
}
SUSE-SU-2021:3851-1
Vulnerability from csaf_suse - Published: 2021-12-01 15:57 - Updated: 2021-12-01 15:57Summary
Security update for xen
Notes
Title of the patch
Security update for xen
Description of the patch
This update for xen fixes the following issues:
- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).
- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).
- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).
Patchnames
HPE-Helion-OpenStack-8-2021-3851,SUSE-2021-3851,SUSE-OpenStack-Cloud-8-2021-3851,SUSE-OpenStack-Cloud-Crowbar-8-2021-3851,SUSE-SLE-SAP-12-SP3-2021-3851,SUSE-SLE-SERVER-12-SP3-2021-3851,SUSE-SLE-SERVER-12-SP3-BCL-2021-3851
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).\n- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).\n- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "HPE-Helion-OpenStack-8-2021-3851,SUSE-2021-3851,SUSE-OpenStack-Cloud-8-2021-3851,SUSE-OpenStack-Cloud-Crowbar-8-2021-3851,SUSE-SLE-SAP-12-SP3-2021-3851,SUSE-SLE-SERVER-12-SP3-2021-3851,SUSE-SLE-SERVER-12-SP3-BCL-2021-3851",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3851-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:3851-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213851-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:3851-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009783.html"
},
{
"category": "self",
"summary": "SUSE Bug 1192554",
"url": "https://bugzilla.suse.com/1192554"
},
{
"category": "self",
"summary": "SUSE Bug 1192557",
"url": "https://bugzilla.suse.com/1192557"
},
{
"category": "self",
"summary": "SUSE Bug 1192559",
"url": "https://bugzilla.suse.com/1192559"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28704 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28705 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28706 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28707 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28708 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28709 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28709/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2021-12-01T15:57:36Z",
"generator": {
"date": "2021-12-01T15:57:36Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:3851-1",
"initial_release_date": "2021-12-01T15:57:36Z",
"revision_history": [
{
"date": "2021-12-01T15:57:36Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.9.4_24-3.97.1.aarch64",
"product": {
"name": "xen-4.9.4_24-3.97.1.aarch64",
"product_id": "xen-4.9.4_24-3.97.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.9.4_24-3.97.1.aarch64",
"product": {
"name": "xen-devel-4.9.4_24-3.97.1.aarch64",
"product_id": "xen-devel-4.9.4_24-3.97.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.9.4_24-3.97.1.aarch64",
"product": {
"name": "xen-doc-html-4.9.4_24-3.97.1.aarch64",
"product_id": "xen-doc-html-4.9.4_24-3.97.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.9.4_24-3.97.1.aarch64",
"product": {
"name": "xen-libs-4.9.4_24-3.97.1.aarch64",
"product_id": "xen-libs-4.9.4_24-3.97.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.9.4_24-3.97.1.aarch64",
"product": {
"name": "xen-tools-4.9.4_24-3.97.1.aarch64",
"product_id": "xen-tools-4.9.4_24-3.97.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.9.4_24-3.97.1.aarch64",
"product": {
"name": "xen-tools-domU-4.9.4_24-3.97.1.aarch64",
"product_id": "xen-tools-domU-4.9.4_24-3.97.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.9.4_24-3.97.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.9.4_24-3.97.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.9.4_24-3.97.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.9.4_24-3.97.1.i586",
"product": {
"name": "xen-devel-4.9.4_24-3.97.1.i586",
"product_id": "xen-devel-4.9.4_24-3.97.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.9.4_24-3.97.1.i586",
"product": {
"name": "xen-libs-4.9.4_24-3.97.1.i586",
"product_id": "xen-libs-4.9.4_24-3.97.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.9.4_24-3.97.1.i586",
"product": {
"name": "xen-tools-domU-4.9.4_24-3.97.1.i586",
"product_id": "xen-tools-domU-4.9.4_24-3.97.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.9.4_24-3.97.1.x86_64",
"product": {
"name": "xen-4.9.4_24-3.97.1.x86_64",
"product_id": "xen-4.9.4_24-3.97.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.9.4_24-3.97.1.x86_64",
"product": {
"name": "xen-doc-html-4.9.4_24-3.97.1.x86_64",
"product_id": "xen-doc-html-4.9.4_24-3.97.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.9.4_24-3.97.1.x86_64",
"product": {
"name": "xen-libs-4.9.4_24-3.97.1.x86_64",
"product_id": "xen-libs-4.9.4_24-3.97.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"product_id": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.9.4_24-3.97.1.x86_64",
"product": {
"name": "xen-tools-4.9.4_24-3.97.1.x86_64",
"product_id": "xen-tools-4.9.4_24-3.97.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"product": {
"name": "xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"product_id": "xen-tools-domU-4.9.4_24-3.97.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.9.4_24-3.97.1.x86_64",
"product": {
"name": "xen-devel-4.9.4_24-3.97.1.x86_64",
"product_id": "xen-devel-4.9.4_24-3.97.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "HPE Helion OpenStack 8",
"product": {
"name": "HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:hpe-helion-openstack:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 8",
"product": {
"name": "SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 8",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:8"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.9.4_24-3.97.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.9.4_24-3.97.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-doc-html-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.9.4_24-3.97.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-libs-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.9.4_24-3.97.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-tools-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.9.4_24-3.97.1.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.9.4_24-3.97.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.9.4_24-3.97.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-doc-html-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.9.4_24-3.97.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-libs-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.9.4_24-3.97.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-tools-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.9.4_24-3.97.1.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.9.4_24-3.97.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.9.4_24-3.97.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-doc-html-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.9.4_24-3.97.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-libs-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.9.4_24-3.97.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-tools-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.9.4_24-3.97.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-doc-html-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-libs-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-tools-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-doc-html-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-libs-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-tools-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-doc-html-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-libs-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-tools-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.9.4_24-3.97.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
},
"product_reference": "xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28704"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28704",
"url": "https://www.suse.com/security/cve/CVE-2021-28704"
},
{
"category": "external",
"summary": "SUSE Bug 1192557 for CVE-2021-28704",
"url": "https://bugzilla.suse.com/1192557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:36Z",
"details": "moderate"
}
],
"title": "CVE-2021-28704"
},
{
"cve": "CVE-2021-28705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28705"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28705",
"url": "https://www.suse.com/security/cve/CVE-2021-28705"
},
{
"category": "external",
"summary": "SUSE Bug 1192559 for CVE-2021-28705",
"url": "https://bugzilla.suse.com/1192559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:36Z",
"details": "moderate"
}
],
"title": "CVE-2021-28705"
},
{
"cve": "CVE-2021-28706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28706"
}
],
"notes": [
{
"category": "general",
"text": "guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precision, which may overflow. It would then only be the overflowed (and hence small) number which gets compared against the established upper bound.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28706",
"url": "https://www.suse.com/security/cve/CVE-2021-28706"
},
{
"category": "external",
"summary": "SUSE Bug 1192554 for CVE-2021-28706",
"url": "https://bugzilla.suse.com/1192554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:36Z",
"details": "moderate"
}
],
"title": "CVE-2021-28706"
},
{
"cve": "CVE-2021-28707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28707",
"url": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:36Z",
"details": "moderate"
}
],
"title": "CVE-2021-28707"
},
{
"cve": "CVE-2021-28708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28708",
"url": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:36Z",
"details": "moderate"
}
],
"title": "CVE-2021-28708"
},
{
"cve": "CVE-2021-28709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28709",
"url": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:xen-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"HPE Helion OpenStack 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_24-3.97.1.x86_64",
"SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_24-3.97.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:36Z",
"details": "moderate"
}
],
"title": "CVE-2021-28709"
}
]
}
SUSE-SU-2021:3842-1
Vulnerability from csaf_suse - Published: 2021-12-01 15:17 - Updated: 2021-12-01 15:17Summary
Security update for xen
Notes
Title of the patch
Security update for xen
Description of the patch
This update for xen fixes the following issues:
- CVE-2021-28701: Fixed race condition in XENMAPSPACE_grant_table handling (XSA-384) (bsc#1189632).
- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).
- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).
- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).
- Integrate bugfixes (bsc#1189373, bsc#1189378).
Patchnames
SUSE-2021-3842,SUSE-SLE-Product-HPC-15-2021-3842,SUSE-SLE-Product-SLES_SAP-15-2021-3842
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2021-28701: Fixed race condition in XENMAPSPACE_grant_table handling (XSA-384) (bsc#1189632).\n- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).\n- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).\n- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).\n\n- Integrate bugfixes (bsc#1189373, bsc#1189378).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-3842,SUSE-SLE-Product-HPC-15-2021-3842,SUSE-SLE-Product-SLES_SAP-15-2021-3842",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3842-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:3842-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213842-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:3842-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009794.html"
},
{
"category": "self",
"summary": "SUSE Bug 1189373",
"url": "https://bugzilla.suse.com/1189373"
},
{
"category": "self",
"summary": "SUSE Bug 1189378",
"url": "https://bugzilla.suse.com/1189378"
},
{
"category": "self",
"summary": "SUSE Bug 1189632",
"url": "https://bugzilla.suse.com/1189632"
},
{
"category": "self",
"summary": "SUSE Bug 1192554",
"url": "https://bugzilla.suse.com/1192554"
},
{
"category": "self",
"summary": "SUSE Bug 1192557",
"url": "https://bugzilla.suse.com/1192557"
},
{
"category": "self",
"summary": "SUSE Bug 1192559",
"url": "https://bugzilla.suse.com/1192559"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28701 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28704 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28705 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28706 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28707 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28708 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28709 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28709/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2021-12-01T15:17:58Z",
"generator": {
"date": "2021-12-01T15:17:58Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:3842-1",
"initial_release_date": "2021-12-01T15:17:58Z",
"revision_history": [
{
"date": "2021-12-01T15:17:58Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.10.4_30-3.68.1.aarch64",
"product": {
"name": "xen-4.10.4_30-3.68.1.aarch64",
"product_id": "xen-4.10.4_30-3.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.10.4_30-3.68.1.aarch64",
"product": {
"name": "xen-devel-4.10.4_30-3.68.1.aarch64",
"product_id": "xen-devel-4.10.4_30-3.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.10.4_30-3.68.1.aarch64",
"product": {
"name": "xen-doc-html-4.10.4_30-3.68.1.aarch64",
"product_id": "xen-doc-html-4.10.4_30-3.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.10.4_30-3.68.1.aarch64",
"product": {
"name": "xen-libs-4.10.4_30-3.68.1.aarch64",
"product_id": "xen-libs-4.10.4_30-3.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.10.4_30-3.68.1.aarch64",
"product": {
"name": "xen-tools-4.10.4_30-3.68.1.aarch64",
"product_id": "xen-tools-4.10.4_30-3.68.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.10.4_30-3.68.1.aarch64",
"product": {
"name": "xen-tools-domU-4.10.4_30-3.68.1.aarch64",
"product_id": "xen-tools-domU-4.10.4_30-3.68.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.10.4_30-3.68.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.10.4_30-3.68.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.10.4_30-3.68.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.10.4_30-3.68.1.i586",
"product": {
"name": "xen-devel-4.10.4_30-3.68.1.i586",
"product_id": "xen-devel-4.10.4_30-3.68.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.10.4_30-3.68.1.i586",
"product": {
"name": "xen-libs-4.10.4_30-3.68.1.i586",
"product_id": "xen-libs-4.10.4_30-3.68.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.10.4_30-3.68.1.i586",
"product": {
"name": "xen-tools-domU-4.10.4_30-3.68.1.i586",
"product_id": "xen-tools-domU-4.10.4_30-3.68.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.10.4_30-3.68.1.x86_64",
"product": {
"name": "xen-4.10.4_30-3.68.1.x86_64",
"product_id": "xen-4.10.4_30-3.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.10.4_30-3.68.1.x86_64",
"product": {
"name": "xen-devel-4.10.4_30-3.68.1.x86_64",
"product_id": "xen-devel-4.10.4_30-3.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.10.4_30-3.68.1.x86_64",
"product": {
"name": "xen-doc-html-4.10.4_30-3.68.1.x86_64",
"product_id": "xen-doc-html-4.10.4_30-3.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.10.4_30-3.68.1.x86_64",
"product": {
"name": "xen-libs-4.10.4_30-3.68.1.x86_64",
"product_id": "xen-libs-4.10.4_30-3.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.10.4_30-3.68.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.10.4_30-3.68.1.x86_64",
"product_id": "xen-libs-32bit-4.10.4_30-3.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.10.4_30-3.68.1.x86_64",
"product": {
"name": "xen-tools-4.10.4_30-3.68.1.x86_64",
"product_id": "xen-tools-4.10.4_30-3.68.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"product": {
"name": "xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"product_id": "xen-tools-domU-4.10.4_30-3.68.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-devel-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-libs-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-tools-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-devel-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-libs-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-tools-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-devel-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-libs-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-tools-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.10.4_30-3.68.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
},
"product_reference": "xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28701"
}
],
"notes": [
{
"category": "general",
"text": "Another race in XENMAPSPACE_grant_table handling Guests are permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, are de-allocated when a guest switches (back) from v2 to v1. Freeing such pages requires that the hypervisor enforce that no parallel request can result in the addition of a mapping of such a page to a guest. That enforcement was missing, allowing guests to retain access to pages that were freed and perhaps re-used for other purposes. Unfortunately, when XSA-379 was being prepared, this similar issue was not noticed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28701",
"url": "https://www.suse.com/security/cve/CVE-2021-28701"
},
{
"category": "external",
"summary": "SUSE Bug 1189632 for CVE-2021-28701",
"url": "https://bugzilla.suse.com/1189632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:17:58Z",
"details": "important"
}
],
"title": "CVE-2021-28701"
},
{
"cve": "CVE-2021-28704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28704"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28704",
"url": "https://www.suse.com/security/cve/CVE-2021-28704"
},
{
"category": "external",
"summary": "SUSE Bug 1192557 for CVE-2021-28704",
"url": "https://bugzilla.suse.com/1192557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:17:58Z",
"details": "moderate"
}
],
"title": "CVE-2021-28704"
},
{
"cve": "CVE-2021-28705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28705"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28705",
"url": "https://www.suse.com/security/cve/CVE-2021-28705"
},
{
"category": "external",
"summary": "SUSE Bug 1192559 for CVE-2021-28705",
"url": "https://bugzilla.suse.com/1192559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:17:58Z",
"details": "moderate"
}
],
"title": "CVE-2021-28705"
},
{
"cve": "CVE-2021-28706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28706"
}
],
"notes": [
{
"category": "general",
"text": "guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precision, which may overflow. It would then only be the overflowed (and hence small) number which gets compared against the established upper bound.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28706",
"url": "https://www.suse.com/security/cve/CVE-2021-28706"
},
{
"category": "external",
"summary": "SUSE Bug 1192554 for CVE-2021-28706",
"url": "https://bugzilla.suse.com/1192554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:17:58Z",
"details": "moderate"
}
],
"title": "CVE-2021-28706"
},
{
"cve": "CVE-2021-28707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28707",
"url": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:17:58Z",
"details": "moderate"
}
],
"title": "CVE-2021-28707"
},
{
"cve": "CVE-2021-28708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28708",
"url": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:17:58Z",
"details": "moderate"
}
],
"title": "CVE-2021-28708"
},
{
"cve": "CVE-2021-28709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28709",
"url": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:xen-tools-domU-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-devel-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-libs-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-4.10.4_30-3.68.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:xen-tools-domU-4.10.4_30-3.68.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:17:58Z",
"details": "moderate"
}
],
"title": "CVE-2021-28709"
}
]
}
SUSE-SU-2021:3849-1
Vulnerability from csaf_suse - Published: 2021-12-01 15:56 - Updated: 2021-12-01 15:56Summary
Security update for xen
Notes
Title of the patch
Security update for xen
Description of the patch
This update for xen fixes the following issues:
- CVE-2021-28701: Fixed race condition in XENMAPSPACE_grant_table handling (XSA-384) (bsc#1189632).
- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).
- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).
- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).
- Integrate bugfixes (bsc#1189373, bsc#1189378)
Patchnames
SUSE-2021-3849,SUSE-OpenStack-Cloud-9-2021-3849,SUSE-OpenStack-Cloud-Crowbar-9-2021-3849,SUSE-SLE-SAP-12-SP4-2021-3849,SUSE-SLE-SERVER-12-SP4-LTSS-2021-3849
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2021-28701: Fixed race condition in XENMAPSPACE_grant_table handling (XSA-384) (bsc#1189632).\n- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).\n- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).\n- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).\n- Integrate bugfixes (bsc#1189373, bsc#1189378)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-3849,SUSE-OpenStack-Cloud-9-2021-3849,SUSE-OpenStack-Cloud-Crowbar-9-2021-3849,SUSE-SLE-SAP-12-SP4-2021-3849,SUSE-SLE-SERVER-12-SP4-LTSS-2021-3849",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3849-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:3849-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213849-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:3849-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009788.html"
},
{
"category": "self",
"summary": "SUSE Bug 1189373",
"url": "https://bugzilla.suse.com/1189373"
},
{
"category": "self",
"summary": "SUSE Bug 1189378",
"url": "https://bugzilla.suse.com/1189378"
},
{
"category": "self",
"summary": "SUSE Bug 1189632",
"url": "https://bugzilla.suse.com/1189632"
},
{
"category": "self",
"summary": "SUSE Bug 1192554",
"url": "https://bugzilla.suse.com/1192554"
},
{
"category": "self",
"summary": "SUSE Bug 1192557",
"url": "https://bugzilla.suse.com/1192557"
},
{
"category": "self",
"summary": "SUSE Bug 1192559",
"url": "https://bugzilla.suse.com/1192559"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28701 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28704 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28705 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28706 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28707 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28708 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28709 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28709/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2021-12-01T15:56:49Z",
"generator": {
"date": "2021-12-01T15:56:49Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:3849-1",
"initial_release_date": "2021-12-01T15:56:49Z",
"revision_history": [
{
"date": "2021-12-01T15:56:49Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.11.4_24-2.65.1.aarch64",
"product": {
"name": "xen-4.11.4_24-2.65.1.aarch64",
"product_id": "xen-4.11.4_24-2.65.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.11.4_24-2.65.1.aarch64",
"product": {
"name": "xen-devel-4.11.4_24-2.65.1.aarch64",
"product_id": "xen-devel-4.11.4_24-2.65.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.11.4_24-2.65.1.aarch64",
"product": {
"name": "xen-doc-html-4.11.4_24-2.65.1.aarch64",
"product_id": "xen-doc-html-4.11.4_24-2.65.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.11.4_24-2.65.1.aarch64",
"product": {
"name": "xen-libs-4.11.4_24-2.65.1.aarch64",
"product_id": "xen-libs-4.11.4_24-2.65.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.11.4_24-2.65.1.aarch64",
"product": {
"name": "xen-tools-4.11.4_24-2.65.1.aarch64",
"product_id": "xen-tools-4.11.4_24-2.65.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.11.4_24-2.65.1.aarch64",
"product": {
"name": "xen-tools-domU-4.11.4_24-2.65.1.aarch64",
"product_id": "xen-tools-domU-4.11.4_24-2.65.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.11.4_24-2.65.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.11.4_24-2.65.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.11.4_24-2.65.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.11.4_24-2.65.1.i586",
"product": {
"name": "xen-devel-4.11.4_24-2.65.1.i586",
"product_id": "xen-devel-4.11.4_24-2.65.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.11.4_24-2.65.1.i586",
"product": {
"name": "xen-libs-4.11.4_24-2.65.1.i586",
"product_id": "xen-libs-4.11.4_24-2.65.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.11.4_24-2.65.1.i586",
"product": {
"name": "xen-tools-domU-4.11.4_24-2.65.1.i586",
"product_id": "xen-tools-domU-4.11.4_24-2.65.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.11.4_24-2.65.1.x86_64",
"product": {
"name": "xen-4.11.4_24-2.65.1.x86_64",
"product_id": "xen-4.11.4_24-2.65.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.11.4_24-2.65.1.x86_64",
"product": {
"name": "xen-devel-4.11.4_24-2.65.1.x86_64",
"product_id": "xen-devel-4.11.4_24-2.65.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.11.4_24-2.65.1.x86_64",
"product": {
"name": "xen-doc-html-4.11.4_24-2.65.1.x86_64",
"product_id": "xen-doc-html-4.11.4_24-2.65.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.11.4_24-2.65.1.x86_64",
"product": {
"name": "xen-libs-4.11.4_24-2.65.1.x86_64",
"product_id": "xen-libs-4.11.4_24-2.65.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"product_id": "xen-libs-32bit-4.11.4_24-2.65.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.11.4_24-2.65.1.x86_64",
"product": {
"name": "xen-tools-4.11.4_24-2.65.1.x86_64",
"product_id": "xen-tools-4.11.4_24-2.65.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"product": {
"name": "xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"product_id": "xen-tools-domU-4.11.4_24-2.65.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 9",
"product": {
"name": "SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:9"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 9",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:9"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.11.4_24-2.65.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.11.4_24-2.65.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-doc-html-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.11.4_24-2.65.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-libs-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.11.4_24-2.65.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.11.4_24-2.65.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-tools-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.11.4_24-2.65.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.11.4_24-2.65.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.11.4_24-2.65.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-doc-html-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.11.4_24-2.65.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-libs-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.11.4_24-2.65.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.11.4_24-2.65.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-tools-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.11.4_24-2.65.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.11.4_24-2.65.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.11.4_24-2.65.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-doc-html-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.11.4_24-2.65.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-libs-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.11.4_24-2.65.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.11.4_24-2.65.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-tools-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.11.4_24-2.65.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.11.4_24-2.65.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.11.4_24-2.65.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-doc-html-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.11.4_24-2.65.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-libs-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.11.4_24-2.65.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.11.4_24-2.65.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-tools-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.11.4_24-2.65.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
},
"product_reference": "xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28701"
}
],
"notes": [
{
"category": "general",
"text": "Another race in XENMAPSPACE_grant_table handling Guests are permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, are de-allocated when a guest switches (back) from v2 to v1. Freeing such pages requires that the hypervisor enforce that no parallel request can result in the addition of a mapping of such a page to a guest. That enforcement was missing, allowing guests to retain access to pages that were freed and perhaps re-used for other purposes. Unfortunately, when XSA-379 was being prepared, this similar issue was not noticed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28701",
"url": "https://www.suse.com/security/cve/CVE-2021-28701"
},
{
"category": "external",
"summary": "SUSE Bug 1189632 for CVE-2021-28701",
"url": "https://bugzilla.suse.com/1189632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:56:49Z",
"details": "important"
}
],
"title": "CVE-2021-28701"
},
{
"cve": "CVE-2021-28704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28704"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28704",
"url": "https://www.suse.com/security/cve/CVE-2021-28704"
},
{
"category": "external",
"summary": "SUSE Bug 1192557 for CVE-2021-28704",
"url": "https://bugzilla.suse.com/1192557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:56:49Z",
"details": "moderate"
}
],
"title": "CVE-2021-28704"
},
{
"cve": "CVE-2021-28705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28705"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28705",
"url": "https://www.suse.com/security/cve/CVE-2021-28705"
},
{
"category": "external",
"summary": "SUSE Bug 1192559 for CVE-2021-28705",
"url": "https://bugzilla.suse.com/1192559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:56:49Z",
"details": "moderate"
}
],
"title": "CVE-2021-28705"
},
{
"cve": "CVE-2021-28706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28706"
}
],
"notes": [
{
"category": "general",
"text": "guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precision, which may overflow. It would then only be the overflowed (and hence small) number which gets compared against the established upper bound.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28706",
"url": "https://www.suse.com/security/cve/CVE-2021-28706"
},
{
"category": "external",
"summary": "SUSE Bug 1192554 for CVE-2021-28706",
"url": "https://bugzilla.suse.com/1192554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:56:49Z",
"details": "moderate"
}
],
"title": "CVE-2021-28706"
},
{
"cve": "CVE-2021-28707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28707",
"url": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:56:49Z",
"details": "moderate"
}
],
"title": "CVE-2021-28707"
},
{
"cve": "CVE-2021-28708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28708",
"url": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:56:49Z",
"details": "moderate"
}
],
"title": "CVE-2021-28708"
},
{
"cve": "CVE-2021-28709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28709",
"url": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-doc-html-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-32bit-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-libs-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-4.11.4_24-2.65.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:xen-tools-domU-4.11.4_24-2.65.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:56:49Z",
"details": "moderate"
}
],
"title": "CVE-2021-28709"
}
]
}
SUSE-SU-2021:3852-1
Vulnerability from csaf_suse - Published: 2021-12-01 15:57 - Updated: 2021-12-01 15:57Summary
Security update for xen
Notes
Title of the patch
Security update for xen
Description of the patch
This update for xen fixes the following issues:
- CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363).
- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).
- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).
- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).
- Fixed 15sp4 uefi fv guest on 12sp5 host unable to bootup with sriov pci device plugin (bsc#1191510).
- Upstream bug fixes (bsc#1027519).
Patchnames
SUSE-2021-3852,SUSE-SLE-SDK-12-SP5-2021-3852,SUSE-SLE-SERVER-12-SP5-2021-3852
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363).\n- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).\n- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).\n- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).\n\n- Fixed 15sp4 uefi fv guest on 12sp5 host unable to bootup with sriov pci device plugin (bsc#1191510).\n- Upstream bug fixes (bsc#1027519).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-3852,SUSE-SLE-SDK-12-SP5-2021-3852,SUSE-SLE-SERVER-12-SP5-2021-3852",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3852-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:3852-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213852-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:3852-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009796.html"
},
{
"category": "self",
"summary": "SUSE Bug 1027519",
"url": "https://bugzilla.suse.com/1027519"
},
{
"category": "self",
"summary": "SUSE Bug 1191363",
"url": "https://bugzilla.suse.com/1191363"
},
{
"category": "self",
"summary": "SUSE Bug 1191510",
"url": "https://bugzilla.suse.com/1191510"
},
{
"category": "self",
"summary": "SUSE Bug 1192554",
"url": "https://bugzilla.suse.com/1192554"
},
{
"category": "self",
"summary": "SUSE Bug 1192557",
"url": "https://bugzilla.suse.com/1192557"
},
{
"category": "self",
"summary": "SUSE Bug 1192559",
"url": "https://bugzilla.suse.com/1192559"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28702 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28704 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28705 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28706 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28707 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28708 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28709 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28709/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2021-12-01T15:57:55Z",
"generator": {
"date": "2021-12-01T15:57:55Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:3852-1",
"initial_release_date": "2021-12-01T15:57:55Z",
"revision_history": [
{
"date": "2021-12-01T15:57:55Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.12.4_16-3.55.1.aarch64",
"product": {
"name": "xen-4.12.4_16-3.55.1.aarch64",
"product_id": "xen-4.12.4_16-3.55.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.12.4_16-3.55.1.aarch64",
"product": {
"name": "xen-devel-4.12.4_16-3.55.1.aarch64",
"product_id": "xen-devel-4.12.4_16-3.55.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.12.4_16-3.55.1.aarch64",
"product": {
"name": "xen-doc-html-4.12.4_16-3.55.1.aarch64",
"product_id": "xen-doc-html-4.12.4_16-3.55.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.12.4_16-3.55.1.aarch64",
"product": {
"name": "xen-libs-4.12.4_16-3.55.1.aarch64",
"product_id": "xen-libs-4.12.4_16-3.55.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.12.4_16-3.55.1.aarch64",
"product": {
"name": "xen-tools-4.12.4_16-3.55.1.aarch64",
"product_id": "xen-tools-4.12.4_16-3.55.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.12.4_16-3.55.1.aarch64",
"product": {
"name": "xen-tools-domU-4.12.4_16-3.55.1.aarch64",
"product_id": "xen-tools-domU-4.12.4_16-3.55.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.12.4_16-3.55.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.12.4_16-3.55.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.12.4_16-3.55.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.12.4_16-3.55.1.i586",
"product": {
"name": "xen-devel-4.12.4_16-3.55.1.i586",
"product_id": "xen-devel-4.12.4_16-3.55.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.12.4_16-3.55.1.i586",
"product": {
"name": "xen-libs-4.12.4_16-3.55.1.i586",
"product_id": "xen-libs-4.12.4_16-3.55.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.12.4_16-3.55.1.i586",
"product": {
"name": "xen-tools-domU-4.12.4_16-3.55.1.i586",
"product_id": "xen-tools-domU-4.12.4_16-3.55.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.12.4_16-3.55.1.x86_64",
"product": {
"name": "xen-4.12.4_16-3.55.1.x86_64",
"product_id": "xen-4.12.4_16-3.55.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.12.4_16-3.55.1.x86_64",
"product": {
"name": "xen-devel-4.12.4_16-3.55.1.x86_64",
"product_id": "xen-devel-4.12.4_16-3.55.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.12.4_16-3.55.1.x86_64",
"product": {
"name": "xen-doc-html-4.12.4_16-3.55.1.x86_64",
"product_id": "xen-doc-html-4.12.4_16-3.55.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.12.4_16-3.55.1.x86_64",
"product": {
"name": "xen-libs-4.12.4_16-3.55.1.x86_64",
"product_id": "xen-libs-4.12.4_16-3.55.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"product_id": "xen-libs-32bit-4.12.4_16-3.55.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.12.4_16-3.55.1.x86_64",
"product": {
"name": "xen-tools-4.12.4_16-3.55.1.x86_64",
"product_id": "xen-tools-4.12.4_16-3.55.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"product": {
"name": "xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"product_id": "xen-tools-domU-4.12.4_16-3.55.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.12.4_16-3.55.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64"
},
"product_reference": "xen-devel-4.12.4_16-3.55.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-devel-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-doc-html-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-libs-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-tools-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-doc-html-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-libs-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-tools-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.12.4_16-3.55.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64"
},
"product_reference": "xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28702"
}
],
"notes": [
{
"category": "general",
"text": "PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, \"RMRR\"). These are typically used for platform tasks such as legacy USB emulation. If such a device is passed through to a guest, then on guest shutdown the device is not properly deassigned. The IOMMU configuration for these devices which are not properly deassigned ends up pointing to a freed data structure, including the IO Pagetables. Subsequent DMA or interrupts from the device will have unpredictable behaviour, ranging from IOMMU faults to memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28702",
"url": "https://www.suse.com/security/cve/CVE-2021-28702"
},
{
"category": "external",
"summary": "SUSE Bug 1191363 for CVE-2021-28702",
"url": "https://bugzilla.suse.com/1191363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:55Z",
"details": "moderate"
}
],
"title": "CVE-2021-28702"
},
{
"cve": "CVE-2021-28704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28704"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28704",
"url": "https://www.suse.com/security/cve/CVE-2021-28704"
},
{
"category": "external",
"summary": "SUSE Bug 1192557 for CVE-2021-28704",
"url": "https://bugzilla.suse.com/1192557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:55Z",
"details": "moderate"
}
],
"title": "CVE-2021-28704"
},
{
"cve": "CVE-2021-28705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28705"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28705",
"url": "https://www.suse.com/security/cve/CVE-2021-28705"
},
{
"category": "external",
"summary": "SUSE Bug 1192559 for CVE-2021-28705",
"url": "https://bugzilla.suse.com/1192559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:55Z",
"details": "moderate"
}
],
"title": "CVE-2021-28705"
},
{
"cve": "CVE-2021-28706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28706"
}
],
"notes": [
{
"category": "general",
"text": "guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precision, which may overflow. It would then only be the overflowed (and hence small) number which gets compared against the established upper bound.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28706",
"url": "https://www.suse.com/security/cve/CVE-2021-28706"
},
{
"category": "external",
"summary": "SUSE Bug 1192554 for CVE-2021-28706",
"url": "https://bugzilla.suse.com/1192554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:55Z",
"details": "moderate"
}
],
"title": "CVE-2021-28706"
},
{
"cve": "CVE-2021-28707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28707",
"url": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:55Z",
"details": "moderate"
}
],
"title": "CVE-2021-28707"
},
{
"cve": "CVE-2021-28708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28708",
"url": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:55Z",
"details": "moderate"
}
],
"title": "CVE-2021-28708"
},
{
"cve": "CVE-2021-28709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28709",
"url": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_16-3.55.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_16-3.55.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-01T15:57:55Z",
"details": "moderate"
}
],
"title": "CVE-2021-28709"
}
]
}
SUSE-SU-2021:3968-1
Vulnerability from csaf_suse - Published: 2021-12-07 14:31 - Updated: 2021-12-07 14:31Summary
Security update for xen
Notes
Title of the patch
Security update for xen
Description of the patch
This update for xen fixes the following issues:
- CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363).
- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).
- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).
- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).
- Update to Xen 4.14.3 bug fix release (bsc#1027519).
Patchnames
SUSE-2021-3968,SUSE-SLE-Module-Basesystem-15-SP3-2021-3968,SUSE-SLE-Module-Server-Applications-15-SP3-2021-3968,SUSE-SUSE-MicroOS-5.1-2021-3968
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363).\n- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).\n- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).\n- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).\n\n- Update to Xen 4.14.3 bug fix release (bsc#1027519).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-3968,SUSE-SLE-Module-Basesystem-15-SP3-2021-3968,SUSE-SLE-Module-Server-Applications-15-SP3-2021-3968,SUSE-SUSE-MicroOS-5.1-2021-3968",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3968-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:3968-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213968-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:3968-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009870.html"
},
{
"category": "self",
"summary": "SUSE Bug 1027519",
"url": "https://bugzilla.suse.com/1027519"
},
{
"category": "self",
"summary": "SUSE Bug 1191363",
"url": "https://bugzilla.suse.com/1191363"
},
{
"category": "self",
"summary": "SUSE Bug 1192554",
"url": "https://bugzilla.suse.com/1192554"
},
{
"category": "self",
"summary": "SUSE Bug 1192557",
"url": "https://bugzilla.suse.com/1192557"
},
{
"category": "self",
"summary": "SUSE Bug 1192559",
"url": "https://bugzilla.suse.com/1192559"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28702 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28704 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28705 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28706 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28707 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28708 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28709 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28709/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2021-12-07T14:31:13Z",
"generator": {
"date": "2021-12-07T14:31:13Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:3968-1",
"initial_release_date": "2021-12-07T14:31:13Z",
"revision_history": [
{
"date": "2021-12-07T14:31:13Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.14.3_04-3.15.1.aarch64",
"product": {
"name": "xen-4.14.3_04-3.15.1.aarch64",
"product_id": "xen-4.14.3_04-3.15.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.14.3_04-3.15.1.aarch64",
"product": {
"name": "xen-devel-4.14.3_04-3.15.1.aarch64",
"product_id": "xen-devel-4.14.3_04-3.15.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.14.3_04-3.15.1.aarch64",
"product": {
"name": "xen-doc-html-4.14.3_04-3.15.1.aarch64",
"product_id": "xen-doc-html-4.14.3_04-3.15.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.14.3_04-3.15.1.aarch64",
"product": {
"name": "xen-libs-4.14.3_04-3.15.1.aarch64",
"product_id": "xen-libs-4.14.3_04-3.15.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.14.3_04-3.15.1.aarch64",
"product": {
"name": "xen-tools-4.14.3_04-3.15.1.aarch64",
"product_id": "xen-tools-4.14.3_04-3.15.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"product": {
"name": "xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"product_id": "xen-tools-domU-4.14.3_04-3.15.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.14.3_04-3.15.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.14.3_04-3.15.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.14.3_04-3.15.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.14.3_04-3.15.1.i586",
"product": {
"name": "xen-devel-4.14.3_04-3.15.1.i586",
"product_id": "xen-devel-4.14.3_04-3.15.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.14.3_04-3.15.1.i586",
"product": {
"name": "xen-libs-4.14.3_04-3.15.1.i586",
"product_id": "xen-libs-4.14.3_04-3.15.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.14.3_04-3.15.1.i586",
"product": {
"name": "xen-tools-domU-4.14.3_04-3.15.1.i586",
"product_id": "xen-tools-domU-4.14.3_04-3.15.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch",
"product_id": "xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-4.14.3_04-3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-devel-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-devel-4.14.3_04-3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-doc-html-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-doc-html-4.14.3_04-3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-libs-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-libs-4.14.3_04-3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-libs-32bit-4.14.3_04-3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-tools-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-tools-4.14.3_04-3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-tools-domU-4.14.3_04-3.15.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.14.3_04-3.15.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-libs-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.14.3_04-3.15.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.14.3_04-3.15.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.14.3_04-3.15.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-devel-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.14.3_04-3.15.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-tools-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.14.3_04-3.15.1.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-libs-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28702"
}
],
"notes": [
{
"category": "general",
"text": "PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, \"RMRR\"). These are typically used for platform tasks such as legacy USB emulation. If such a device is passed through to a guest, then on guest shutdown the device is not properly deassigned. The IOMMU configuration for these devices which are not properly deassigned ends up pointing to a freed data structure, including the IO Pagetables. Subsequent DMA or interrupts from the device will have unpredictable behaviour, ranging from IOMMU faults to memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28702",
"url": "https://www.suse.com/security/cve/CVE-2021-28702"
},
{
"category": "external",
"summary": "SUSE Bug 1191363 for CVE-2021-28702",
"url": "https://bugzilla.suse.com/1191363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:13Z",
"details": "moderate"
}
],
"title": "CVE-2021-28702"
},
{
"cve": "CVE-2021-28704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28704"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28704",
"url": "https://www.suse.com/security/cve/CVE-2021-28704"
},
{
"category": "external",
"summary": "SUSE Bug 1192557 for CVE-2021-28704",
"url": "https://bugzilla.suse.com/1192557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:13Z",
"details": "moderate"
}
],
"title": "CVE-2021-28704"
},
{
"cve": "CVE-2021-28705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28705"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28705",
"url": "https://www.suse.com/security/cve/CVE-2021-28705"
},
{
"category": "external",
"summary": "SUSE Bug 1192559 for CVE-2021-28705",
"url": "https://bugzilla.suse.com/1192559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:13Z",
"details": "moderate"
}
],
"title": "CVE-2021-28705"
},
{
"cve": "CVE-2021-28706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28706"
}
],
"notes": [
{
"category": "general",
"text": "guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precision, which may overflow. It would then only be the overflowed (and hence small) number which gets compared against the established upper bound.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28706",
"url": "https://www.suse.com/security/cve/CVE-2021-28706"
},
{
"category": "external",
"summary": "SUSE Bug 1192554 for CVE-2021-28706",
"url": "https://bugzilla.suse.com/1192554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:13Z",
"details": "moderate"
}
],
"title": "CVE-2021-28706"
},
{
"cve": "CVE-2021-28707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28707",
"url": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:13Z",
"details": "moderate"
}
],
"title": "CVE-2021-28707"
},
{
"cve": "CVE-2021-28708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28708",
"url": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:13Z",
"details": "moderate"
}
],
"title": "CVE-2021-28708"
},
{
"cve": "CVE-2021-28709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28709",
"url": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.1:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-libs-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-devel-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-4.14.3_04-3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:13Z",
"details": "moderate"
}
],
"title": "CVE-2021-28709"
}
]
}
SUSE-SU-2021:3977-1
Vulnerability from csaf_suse - Published: 2021-12-09 10:05 - Updated: 2021-12-09 10:05Summary
Security update for xen
Notes
Title of the patch
Security update for xen
Description of the patch
This update for xen fixes the following issues:
- CVE-2021-28701: Fixed race condition in XENMAPSPACE_grant_table handling (XSA-384) (bsc#1189632).
- CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363).
- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).
- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).
- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).
- Upstream bug fixes (bsc#1027519)
Patchnames
SUSE-2021-3977,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-3977,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-3977,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-3977,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-3977,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-3977,SUSE-Storage-6-2021-3977
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2021-28701: Fixed race condition in XENMAPSPACE_grant_table handling (XSA-384) (bsc#1189632).\n- CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363).\n- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).\n- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).\n- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).\n\n- Upstream bug fixes (bsc#1027519)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-3977,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-3977,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-3977,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-3977,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-3977,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-3977,SUSE-Storage-6-2021-3977",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3977-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:3977-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213977-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:3977-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009874.html"
},
{
"category": "self",
"summary": "SUSE Bug 1027519",
"url": "https://bugzilla.suse.com/1027519"
},
{
"category": "self",
"summary": "SUSE Bug 1189632",
"url": "https://bugzilla.suse.com/1189632"
},
{
"category": "self",
"summary": "SUSE Bug 1191363",
"url": "https://bugzilla.suse.com/1191363"
},
{
"category": "self",
"summary": "SUSE Bug 1192554",
"url": "https://bugzilla.suse.com/1192554"
},
{
"category": "self",
"summary": "SUSE Bug 1192557",
"url": "https://bugzilla.suse.com/1192557"
},
{
"category": "self",
"summary": "SUSE Bug 1192559",
"url": "https://bugzilla.suse.com/1192559"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28701 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28701/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28702 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28704 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28705 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28706 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28707 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28708 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28709 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28709/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2021-12-09T10:05:29Z",
"generator": {
"date": "2021-12-09T10:05:29Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:3977-1",
"initial_release_date": "2021-12-09T10:05:29Z",
"revision_history": [
{
"date": "2021-12-09T10:05:29Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.12.4_16-3.57.1.aarch64",
"product": {
"name": "xen-4.12.4_16-3.57.1.aarch64",
"product_id": "xen-4.12.4_16-3.57.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.12.4_16-3.57.1.aarch64",
"product": {
"name": "xen-devel-4.12.4_16-3.57.1.aarch64",
"product_id": "xen-devel-4.12.4_16-3.57.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.12.4_16-3.57.1.aarch64",
"product": {
"name": "xen-doc-html-4.12.4_16-3.57.1.aarch64",
"product_id": "xen-doc-html-4.12.4_16-3.57.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.12.4_16-3.57.1.aarch64",
"product": {
"name": "xen-libs-4.12.4_16-3.57.1.aarch64",
"product_id": "xen-libs-4.12.4_16-3.57.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.12.4_16-3.57.1.aarch64",
"product": {
"name": "xen-tools-4.12.4_16-3.57.1.aarch64",
"product_id": "xen-tools-4.12.4_16-3.57.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.12.4_16-3.57.1.aarch64",
"product": {
"name": "xen-tools-domU-4.12.4_16-3.57.1.aarch64",
"product_id": "xen-tools-domU-4.12.4_16-3.57.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.12.4_16-3.57.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.12.4_16-3.57.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.12.4_16-3.57.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.12.4_16-3.57.1.i586",
"product": {
"name": "xen-devel-4.12.4_16-3.57.1.i586",
"product_id": "xen-devel-4.12.4_16-3.57.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.12.4_16-3.57.1.i586",
"product": {
"name": "xen-libs-4.12.4_16-3.57.1.i586",
"product_id": "xen-libs-4.12.4_16-3.57.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.12.4_16-3.57.1.i586",
"product": {
"name": "xen-tools-domU-4.12.4_16-3.57.1.i586",
"product_id": "xen-tools-domU-4.12.4_16-3.57.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.12.4_16-3.57.1.x86_64",
"product": {
"name": "xen-4.12.4_16-3.57.1.x86_64",
"product_id": "xen-4.12.4_16-3.57.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.12.4_16-3.57.1.x86_64",
"product": {
"name": "xen-devel-4.12.4_16-3.57.1.x86_64",
"product_id": "xen-devel-4.12.4_16-3.57.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.12.4_16-3.57.1.x86_64",
"product": {
"name": "xen-doc-html-4.12.4_16-3.57.1.x86_64",
"product_id": "xen-doc-html-4.12.4_16-3.57.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.12.4_16-3.57.1.x86_64",
"product": {
"name": "xen-libs-4.12.4_16-3.57.1.x86_64",
"product_id": "xen-libs-4.12.4_16-3.57.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.12.4_16-3.57.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.12.4_16-3.57.1.x86_64",
"product_id": "xen-libs-32bit-4.12.4_16-3.57.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.12.4_16-3.57.1.x86_64",
"product": {
"name": "xen-tools-4.12.4_16-3.57.1.x86_64",
"product_id": "xen-tools-4.12.4_16-3.57.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"product": {
"name": "xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"product_id": "xen-tools-domU-4.12.4_16-3.57.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_bcl:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 6",
"product": {
"name": "SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-devel-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-libs-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-tools-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-devel-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-libs-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-tools-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-devel-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-libs-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-tools-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-devel-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-libs-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-tools-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-devel-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-libs-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-tools-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.12.4_16-3.57.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.12.4_16-3.57.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.12.4_16-3.57.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-devel-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.12.4_16-3.57.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-libs-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.12.4_16-3.57.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-tools-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.12.4_16-3.57.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
},
"product_reference": "xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28701",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28701"
}
],
"notes": [
{
"category": "general",
"text": "Another race in XENMAPSPACE_grant_table handling Guests are permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, are de-allocated when a guest switches (back) from v2 to v1. Freeing such pages requires that the hypervisor enforce that no parallel request can result in the addition of a mapping of such a page to a guest. That enforcement was missing, allowing guests to retain access to pages that were freed and perhaps re-used for other purposes. Unfortunately, when XSA-379 was being prepared, this similar issue was not noticed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28701",
"url": "https://www.suse.com/security/cve/CVE-2021-28701"
},
{
"category": "external",
"summary": "SUSE Bug 1189632 for CVE-2021-28701",
"url": "https://bugzilla.suse.com/1189632"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-09T10:05:29Z",
"details": "important"
}
],
"title": "CVE-2021-28701"
},
{
"cve": "CVE-2021-28702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28702"
}
],
"notes": [
{
"category": "general",
"text": "PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, \"RMRR\"). These are typically used for platform tasks such as legacy USB emulation. If such a device is passed through to a guest, then on guest shutdown the device is not properly deassigned. The IOMMU configuration for these devices which are not properly deassigned ends up pointing to a freed data structure, including the IO Pagetables. Subsequent DMA or interrupts from the device will have unpredictable behaviour, ranging from IOMMU faults to memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28702",
"url": "https://www.suse.com/security/cve/CVE-2021-28702"
},
{
"category": "external",
"summary": "SUSE Bug 1191363 for CVE-2021-28702",
"url": "https://bugzilla.suse.com/1191363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-09T10:05:29Z",
"details": "moderate"
}
],
"title": "CVE-2021-28702"
},
{
"cve": "CVE-2021-28704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28704"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28704",
"url": "https://www.suse.com/security/cve/CVE-2021-28704"
},
{
"category": "external",
"summary": "SUSE Bug 1192557 for CVE-2021-28704",
"url": "https://bugzilla.suse.com/1192557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-09T10:05:29Z",
"details": "moderate"
}
],
"title": "CVE-2021-28704"
},
{
"cve": "CVE-2021-28705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28705"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28705",
"url": "https://www.suse.com/security/cve/CVE-2021-28705"
},
{
"category": "external",
"summary": "SUSE Bug 1192559 for CVE-2021-28705",
"url": "https://bugzilla.suse.com/1192559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-09T10:05:29Z",
"details": "moderate"
}
],
"title": "CVE-2021-28705"
},
{
"cve": "CVE-2021-28706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28706"
}
],
"notes": [
{
"category": "general",
"text": "guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precision, which may overflow. It would then only be the overflowed (and hence small) number which gets compared against the established upper bound.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28706",
"url": "https://www.suse.com/security/cve/CVE-2021-28706"
},
{
"category": "external",
"summary": "SUSE Bug 1192554 for CVE-2021-28706",
"url": "https://bugzilla.suse.com/1192554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-09T10:05:29Z",
"details": "moderate"
}
],
"title": "CVE-2021-28706"
},
{
"cve": "CVE-2021-28707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28707",
"url": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-09T10:05:29Z",
"details": "moderate"
}
],
"title": "CVE-2021-28707"
},
{
"cve": "CVE-2021-28708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28708",
"url": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-09T10:05:29Z",
"details": "moderate"
}
],
"title": "CVE-2021-28708"
},
{
"cve": "CVE-2021-28709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28709",
"url": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Enterprise Storage 6:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:xen-tools-domU-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-devel-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-libs-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-4.12.4_16-3.57.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:xen-tools-domU-4.12.4_16-3.57.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-09T10:05:29Z",
"details": "moderate"
}
],
"title": "CVE-2021-28709"
}
]
}
SUSE-SU-2021:3813-1
Vulnerability from csaf_suse - Published: 2021-11-29 11:15 - Updated: 2021-11-29 11:15Summary
Security update for xen
Notes
Title of the patch
Security update for xen
Description of the patch
This update for xen fixes the following issues:
- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).
- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).
- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).
Patchnames
SUSE-2021-3813,SUSE-SLE-SERVER-12-SP2-BCL-2021-3813
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).\n- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).\n- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-3813,SUSE-SLE-SERVER-12-SP2-BCL-2021-3813",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_3813-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:3813-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20213813-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:3813-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-November/009778.html"
},
{
"category": "self",
"summary": "SUSE Bug 1192554",
"url": "https://bugzilla.suse.com/1192554"
},
{
"category": "self",
"summary": "SUSE Bug 1192557",
"url": "https://bugzilla.suse.com/1192557"
},
{
"category": "self",
"summary": "SUSE Bug 1192559",
"url": "https://bugzilla.suse.com/1192559"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28704 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28705 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28706 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28707 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28708 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28709 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28709/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2021-11-29T11:15:02Z",
"generator": {
"date": "2021-11-29T11:15:02Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:3813-1",
"initial_release_date": "2021-11-29T11:15:02Z",
"revision_history": [
{
"date": "2021-11-29T11:15:02Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.7.6_18-43.82.1.aarch64",
"product": {
"name": "xen-4.7.6_18-43.82.1.aarch64",
"product_id": "xen-4.7.6_18-43.82.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.7.6_18-43.82.1.aarch64",
"product": {
"name": "xen-devel-4.7.6_18-43.82.1.aarch64",
"product_id": "xen-devel-4.7.6_18-43.82.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.7.6_18-43.82.1.aarch64",
"product": {
"name": "xen-doc-html-4.7.6_18-43.82.1.aarch64",
"product_id": "xen-doc-html-4.7.6_18-43.82.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.7.6_18-43.82.1.aarch64",
"product": {
"name": "xen-libs-4.7.6_18-43.82.1.aarch64",
"product_id": "xen-libs-4.7.6_18-43.82.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.7.6_18-43.82.1.aarch64",
"product": {
"name": "xen-tools-4.7.6_18-43.82.1.aarch64",
"product_id": "xen-tools-4.7.6_18-43.82.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.7.6_18-43.82.1.aarch64",
"product": {
"name": "xen-tools-domU-4.7.6_18-43.82.1.aarch64",
"product_id": "xen-tools-domU-4.7.6_18-43.82.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.7.6_18-43.82.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.7.6_18-43.82.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.7.6_18-43.82.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.7.6_18-43.82.1.i586",
"product": {
"name": "xen-devel-4.7.6_18-43.82.1.i586",
"product_id": "xen-devel-4.7.6_18-43.82.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.7.6_18-43.82.1.i586",
"product": {
"name": "xen-libs-4.7.6_18-43.82.1.i586",
"product_id": "xen-libs-4.7.6_18-43.82.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.7.6_18-43.82.1.i586",
"product": {
"name": "xen-tools-domU-4.7.6_18-43.82.1.i586",
"product_id": "xen-tools-domU-4.7.6_18-43.82.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.7.6_18-43.82.1.x86_64",
"product": {
"name": "xen-4.7.6_18-43.82.1.x86_64",
"product_id": "xen-4.7.6_18-43.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.7.6_18-43.82.1.x86_64",
"product": {
"name": "xen-devel-4.7.6_18-43.82.1.x86_64",
"product_id": "xen-devel-4.7.6_18-43.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.7.6_18-43.82.1.x86_64",
"product": {
"name": "xen-doc-html-4.7.6_18-43.82.1.x86_64",
"product_id": "xen-doc-html-4.7.6_18-43.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.7.6_18-43.82.1.x86_64",
"product": {
"name": "xen-libs-4.7.6_18-43.82.1.x86_64",
"product_id": "xen-libs-4.7.6_18-43.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"product_id": "xen-libs-32bit-4.7.6_18-43.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.7.6_18-43.82.1.x86_64",
"product": {
"name": "xen-tools-4.7.6_18-43.82.1.x86_64",
"product_id": "xen-tools-4.7.6_18-43.82.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.7.6_18-43.82.1.x86_64",
"product": {
"name": "xen-tools-domU-4.7.6_18-43.82.1.x86_64",
"product_id": "xen-tools-domU-4.7.6_18-43.82.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.7.6_18-43.82.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64"
},
"product_reference": "xen-4.7.6_18-43.82.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.7.6_18-43.82.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64"
},
"product_reference": "xen-doc-html-4.7.6_18-43.82.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.7.6_18-43.82.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64"
},
"product_reference": "xen-libs-4.7.6_18-43.82.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.7.6_18-43.82.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.7.6_18-43.82.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64"
},
"product_reference": "xen-tools-4.7.6_18-43.82.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.7.6_18-43.82.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
},
"product_reference": "xen-tools-domU-4.7.6_18-43.82.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28704"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28704",
"url": "https://www.suse.com/security/cve/CVE-2021-28704"
},
{
"category": "external",
"summary": "SUSE Bug 1192557 for CVE-2021-28704",
"url": "https://bugzilla.suse.com/1192557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-29T11:15:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-28704"
},
{
"cve": "CVE-2021-28705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28705"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28705",
"url": "https://www.suse.com/security/cve/CVE-2021-28705"
},
{
"category": "external",
"summary": "SUSE Bug 1192559 for CVE-2021-28705",
"url": "https://bugzilla.suse.com/1192559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-29T11:15:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-28705"
},
{
"cve": "CVE-2021-28706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28706"
}
],
"notes": [
{
"category": "general",
"text": "guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precision, which may overflow. It would then only be the overflowed (and hence small) number which gets compared against the established upper bound.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28706",
"url": "https://www.suse.com/security/cve/CVE-2021-28706"
},
{
"category": "external",
"summary": "SUSE Bug 1192554 for CVE-2021-28706",
"url": "https://bugzilla.suse.com/1192554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-29T11:15:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-28706"
},
{
"cve": "CVE-2021-28707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28707",
"url": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-29T11:15:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-28707"
},
{
"cve": "CVE-2021-28708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28708",
"url": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-29T11:15:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-28708"
},
{
"cve": "CVE-2021-28709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28709",
"url": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-doc-html-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-32bit-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-libs-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-4.7.6_18-43.82.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:xen-tools-domU-4.7.6_18-43.82.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-11-29T11:15:02Z",
"details": "moderate"
}
],
"title": "CVE-2021-28709"
}
]
}
WID-SEC-W-2024-0281
Vulnerability from csaf_certbund - Published: 2021-11-23 23:00 - Updated: 2024-02-04 23:00Summary
Xen: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Xen ist ein Virtueller-Maschinen-Monitor (VMM), der Hardware (x86, IA-64, PowerPC) für die darauf laufenden Systeme (Domains) paravirtualisiert.
Angriff
Ein lokaler Angreifer kann mehrere Schwachstellen in Xen ausnutzen, um seine Privilegien zu erhöhen, beliebigen Programmcode auszuführen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuführen.
Betroffene Betriebssysteme
- UNIX
- Linux
- Windows
- Native Hypervisor
- Sonstiges
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Xen ist ein Virtueller-Maschinen-Monitor (VMM), der Hardware (x86, IA-64, PowerPC) f\u00fcr die darauf laufenden Systeme (Domains) paravirtualisiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler Angreifer kann mehrere Schwachstellen in Xen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Programmcode auszuf\u00fchren, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX\n- Linux\n- Windows\n- Native Hypervisor\n- Sonstiges",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0281 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2024-0281.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0281 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0281"
},
{
"category": "external",
"summary": "Xen Security Advisory: XSA-385 vom 2021-11-23",
"url": "https://xenbits.xen.org/xsa/advisory-385.html"
},
{
"category": "external",
"summary": "Xen Security Advisory: XSA-388 vom 2021-11-23",
"url": "https://xenbits.xen.org/xsa/advisory-388.html"
},
{
"category": "external",
"summary": "Xen Security Advisory: XSA-389 vom 2021-11-23",
"url": "https://xenbits.xen.org/xsa/advisory-389.html"
},
{
"category": "external",
"summary": "Xen Security Advisory: XSA-387 vom 2021-11-23",
"url": "https://xenbits.xen.org/xsa/advisory-387.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2021:3813-1 vom 2021-11-29",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-November/009778.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2021:3842-1 vom 2021-12-01",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009794.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2021:3851-1 vom 2021-12-01",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009783.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2021:3849-1 vom 2021-12-01",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009788.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2021:14848-1 vom 2021-12-01",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009799.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2021:3852-1 vom 2021-12-01",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009796.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2021:3888-1 vom 2021-12-03",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009826.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5017 vom 2021-12-06",
"url": "https://www.debian.org/security/2021/dsa-5017"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2021:3968-1 vom 2021-12-07",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009870.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2021:3977-1 vom 2021-12-09",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-December/009874.html"
},
{
"category": "external",
"summary": "ORACLE OVMSA-2022-0003 vom 2022-01-11",
"url": "https://oss.oracle.com/pipermail/oraclevm-errata/2022-January/001044.html"
},
{
"category": "external",
"summary": "ORACLE OVMSA-2022-0004 vom 2022-01-11",
"url": "https://oss.oracle.com/pipermail/oraclevm-errata/2022-January/001041.html"
},
{
"category": "external",
"summary": "Citrix Security Advisory CTX335432 vom 2022-01-12",
"url": "https://support.citrix.com/article/CTX335432"
},
{
"category": "external",
"summary": "Gentoo Linux Security Advisory GLSA-202402-07 vom 2024-02-04",
"url": "https://security.gentoo.org/glsa/202402-07"
}
],
"source_lang": "en-US",
"title": "Xen: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-02-04T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T18:04:48.327+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2024-0281",
"initial_release_date": "2021-11-23T23:00:00.000+00:00",
"revision_history": [
{
"date": "2021-11-23T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2021-11-29T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2021-12-01T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2021-12-05T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2021-12-06T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2021-12-07T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2021-12-09T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2022-01-10T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von ORACLE aufgenommen"
},
{
"date": "2022-01-12T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Citrix aufgenommen"
},
{
"date": "2024-02-04T23:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Gentoo aufgenommen"
}
],
"status": "final",
"version": "10"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Citrix Systems Hypervisor",
"product": {
"name": "Citrix Systems Hypervisor",
"product_id": "T016872",
"product_identification_helper": {
"cpe": "cpe:/o:citrix:hypervisor:-"
}
}
}
],
"category": "vendor",
"name": "Citrix Systems"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "Gentoo Linux",
"product": {
"name": "Gentoo Linux",
"product_id": "T012167",
"product_identification_helper": {
"cpe": "cpe:/o:gentoo:linux:-"
}
}
}
],
"category": "vendor",
"name": "Gentoo"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Open Source Xen Xen 4.15.x",
"product": {
"name": "Open Source Xen Xen 4.15.x",
"product_id": "T019524",
"product_identification_helper": {
"cpe": "cpe:/o:xen:xen:xen_4.15.x"
}
}
},
{
"category": "product_name",
"name": "Open Source Xen Xen 4.14.x",
"product": {
"name": "Open Source Xen Xen 4.14.x",
"product_id": "T019525",
"product_identification_helper": {
"cpe": "cpe:/o:xen:xen:xen_4.14.x"
}
}
},
{
"category": "product_name",
"name": "Open Source Xen Xen 4.12.x",
"product": {
"name": "Open Source Xen Xen 4.12.x",
"product_id": "T019526",
"product_identification_helper": {
"cpe": "cpe:/o:xen:xen:xen_4.12.x"
}
}
},
{
"category": "product_name",
"name": "Open Source Xen Xen 4.13.x",
"product": {
"name": "Open Source Xen Xen 4.13.x",
"product_id": "T019533",
"product_identification_helper": {
"cpe": "cpe:/o:xen:xen:xen_4.13.x"
}
}
}
],
"category": "product_name",
"name": "Xen"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle VM",
"product": {
"name": "Oracle VM",
"product_id": "T011119",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:vm:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28703",
"notes": [
{
"category": "description",
"text": "In Xen existieren mehrere Schwachstellen. Diese bestehen, weil Gast-Nutzer ihr Speicherlimit \u00fcberschreiten k\u00f6nnen, aufgrund von Fehlern in verschiedenen Funktionen w\u00e4hrend XEN im Populate-on-Demand-Modus l\u00e4uft sowie einer fehlerhaften De-allokation von Grant Table Statusseiten. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode auszuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T011119",
"T019533",
"T019524",
"2951",
"T002207",
"T019526",
"T019525",
"T012167",
"T016872"
]
},
"release_date": "2021-11-23T23:00:00.000+00:00",
"title": "CVE-2021-28703"
},
{
"cve": "CVE-2021-28704",
"notes": [
{
"category": "description",
"text": "In Xen existieren mehrere Schwachstellen. Diese bestehen, weil Gast-Nutzer ihr Speicherlimit \u00fcberschreiten k\u00f6nnen, aufgrund von Fehlern in verschiedenen Funktionen w\u00e4hrend XEN im Populate-on-Demand-Modus l\u00e4uft sowie einer fehlerhaften De-allokation von Grant Table Statusseiten. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode auszuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T011119",
"T019533",
"T019524",
"2951",
"T002207",
"T019526",
"T019525",
"T012167",
"T016872"
]
},
"release_date": "2021-11-23T23:00:00.000+00:00",
"title": "CVE-2021-28704"
},
{
"cve": "CVE-2021-28705",
"notes": [
{
"category": "description",
"text": "In Xen existieren mehrere Schwachstellen. Diese bestehen, weil Gast-Nutzer ihr Speicherlimit \u00fcberschreiten k\u00f6nnen, aufgrund von Fehlern in verschiedenen Funktionen w\u00e4hrend XEN im Populate-on-Demand-Modus l\u00e4uft sowie einer fehlerhaften De-allokation von Grant Table Statusseiten. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode auszuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T011119",
"T019533",
"T019524",
"2951",
"T002207",
"T019526",
"T019525",
"T012167",
"T016872"
]
},
"release_date": "2021-11-23T23:00:00.000+00:00",
"title": "CVE-2021-28705"
},
{
"cve": "CVE-2021-28706",
"notes": [
{
"category": "description",
"text": "In Xen existieren mehrere Schwachstellen. Diese bestehen, weil Gast-Nutzer ihr Speicherlimit \u00fcberschreiten k\u00f6nnen, aufgrund von Fehlern in verschiedenen Funktionen w\u00e4hrend XEN im Populate-on-Demand-Modus l\u00e4uft sowie einer fehlerhaften De-allokation von Grant Table Statusseiten. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode auszuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T011119",
"T019533",
"T019524",
"2951",
"T002207",
"T019526",
"T019525",
"T012167",
"T016872"
]
},
"release_date": "2021-11-23T23:00:00.000+00:00",
"title": "CVE-2021-28706"
},
{
"cve": "CVE-2021-28707",
"notes": [
{
"category": "description",
"text": "In Xen existieren mehrere Schwachstellen. Diese bestehen, weil Gast-Nutzer ihr Speicherlimit \u00fcberschreiten k\u00f6nnen, aufgrund von Fehlern in verschiedenen Funktionen w\u00e4hrend XEN im Populate-on-Demand-Modus l\u00e4uft sowie einer fehlerhaften De-allokation von Grant Table Statusseiten. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode auszuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T011119",
"T019533",
"T019524",
"2951",
"T002207",
"T019526",
"T019525",
"T012167",
"T016872"
]
},
"release_date": "2021-11-23T23:00:00.000+00:00",
"title": "CVE-2021-28707"
},
{
"cve": "CVE-2021-28708",
"notes": [
{
"category": "description",
"text": "In Xen existieren mehrere Schwachstellen. Diese bestehen, weil Gast-Nutzer ihr Speicherlimit \u00fcberschreiten k\u00f6nnen, aufgrund von Fehlern in verschiedenen Funktionen w\u00e4hrend XEN im Populate-on-Demand-Modus l\u00e4uft sowie einer fehlerhaften De-allokation von Grant Table Statusseiten. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode auszuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T011119",
"T019533",
"T019524",
"2951",
"T002207",
"T019526",
"T019525",
"T012167",
"T016872"
]
},
"release_date": "2021-11-23T23:00:00.000+00:00",
"title": "CVE-2021-28708"
},
{
"cve": "CVE-2021-28709",
"notes": [
{
"category": "description",
"text": "In Xen existieren mehrere Schwachstellen. Diese bestehen, weil Gast-Nutzer ihr Speicherlimit \u00fcberschreiten k\u00f6nnen, aufgrund von Fehlern in verschiedenen Funktionen w\u00e4hrend XEN im Populate-on-Demand-Modus l\u00e4uft sowie einer fehlerhaften De-allokation von Grant Table Statusseiten. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode auszuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T011119",
"T019533",
"T019524",
"2951",
"T002207",
"T019526",
"T019525",
"T012167",
"T016872"
]
},
"release_date": "2021-11-23T23:00:00.000+00:00",
"title": "CVE-2021-28709"
}
]
}
CERTFR-2022-AVI-037
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Citrix Hypervisor. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire et un déni de service.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Citrix | Citrix Hypervisor | Citrix Hypervisor 8.2 sans les correctifs de sécurité XS82E035 et XS82E036 | ||
| Citrix | Citrix Hypervisor | Citrix XenServer 7.1 LTSR CU2 sans les correctifs de sécurité XS71ECU2069 et XS71ECU2070 | ||
| Citrix | Citrix Hypervisor | Citrix Hypervisor 8.2 CU1 LTSR sans les correctifs de sécurité XS82ECU1001 et XS82ECU1002 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Citrix Hypervisor 8.2 sans les correctifs de s\u00e9curit\u00e9 XS82E035 et XS82E036",
"product": {
"name": "Citrix Hypervisor",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer 7.1 LTSR CU2 sans les correctifs de s\u00e9curit\u00e9 XS71ECU2069 et XS71ECU2070",
"product": {
"name": "Citrix Hypervisor",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix Hypervisor 8.2 CU1 LTSR sans les correctifs de s\u00e9curit\u00e9 XS82ECU1001 et XS82ECU1002",
"product": {
"name": "Citrix Hypervisor",
"vendor": {
"name": "Citrix",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-28704",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28704"
},
{
"name": "CVE-2021-28705",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28705"
},
{
"name": "CVE-2021-28714",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28714"
},
{
"name": "CVE-2021-28715",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28715"
}
],
"links": [],
"reference": "CERTFR-2022-AVI-037",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2022-01-13T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Citrix Hypervisor.\nElles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non\nsp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de code arbitraire et un d\u00e9ni de\nservice.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Citrix Hypervisor",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX335432 du 12 janvier 2022",
"url": "https://support.citrix.com/article/CTX335432"
}
]
}
CERTFR-2021-AVI-901
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Xen. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service, une atteinte à l'intégrité des données et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| XEN | Xen | Xen versions 3.2 et ultérieures sans le dernier correctif de sécurité XSA-385 | ||
| XEN | Xen | Xen versions 4.13 et antérieures sans le dernier correctif de sécurité XSA-387 | ||
| XEN | Xen | Xen versions 4.7 et ultérieures sans le dernier correctif de sécurité XSA-388 | ||
| XEN | Xen | Xen versions 3.4 et ultérieures sans le dernier correctif de sécurité XSA-389 |
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Xen versions 3.2 et ult\u00e9rieures sans le dernier correctif de s\u00e9curit\u00e9 XSA-385",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions 4.13 et ant\u00e9rieures sans le dernier correctif de s\u00e9curit\u00e9 XSA-387",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions 4.7 et ult\u00e9rieures sans le dernier correctif de s\u00e9curit\u00e9 XSA-388",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions 3.4 et ult\u00e9rieures sans le dernier correctif de s\u00e9curit\u00e9 XSA-389",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-28706",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28706"
},
{
"name": "CVE-2021-28704",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28704"
},
{
"name": "CVE-2021-28705",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28705"
},
{
"name": "CVE-2021-28709",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28709"
},
{
"name": "CVE-2021-28708",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28708"
},
{
"name": "CVE-2021-28703",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28703"
},
{
"name": "CVE-2021-28707",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28707"
}
],
"links": [],
"reference": "CERTFR-2021-AVI-901",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-11-24T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Xen. Certaines\nd\u0027entre elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service,\nune atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Xen",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Xen XSA-389 du 23 novembre 2021",
"url": "https://xenbits.xen.org/xsa/advisory-389.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Xen XSA-387 du 23 novembre 2021",
"url": "https://xenbits.xen.org/xsa/advisory-387.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Xen XSA-388 du 23 novembre 2021",
"url": "https://xenbits.xen.org/xsa/advisory-388.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Xen XSA-385 du 23 novembre 2021",
"url": "https://xenbits.xen.org/xsa/advisory-385.html"
}
]
}
CERTFR-2022-AVI-037
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Citrix Hypervisor. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire et un déni de service.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Citrix | Citrix Hypervisor | Citrix Hypervisor 8.2 sans les correctifs de sécurité XS82E035 et XS82E036 | ||
| Citrix | Citrix Hypervisor | Citrix XenServer 7.1 LTSR CU2 sans les correctifs de sécurité XS71ECU2069 et XS71ECU2070 | ||
| Citrix | Citrix Hypervisor | Citrix Hypervisor 8.2 CU1 LTSR sans les correctifs de sécurité XS82ECU1001 et XS82ECU1002 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Citrix Hypervisor 8.2 sans les correctifs de s\u00e9curit\u00e9 XS82E035 et XS82E036",
"product": {
"name": "Citrix Hypervisor",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix XenServer 7.1 LTSR CU2 sans les correctifs de s\u00e9curit\u00e9 XS71ECU2069 et XS71ECU2070",
"product": {
"name": "Citrix Hypervisor",
"vendor": {
"name": "Citrix",
"scada": false
}
}
},
{
"description": "Citrix Hypervisor 8.2 CU1 LTSR sans les correctifs de s\u00e9curit\u00e9 XS82ECU1001 et XS82ECU1002",
"product": {
"name": "Citrix Hypervisor",
"vendor": {
"name": "Citrix",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-28704",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28704"
},
{
"name": "CVE-2021-28705",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28705"
},
{
"name": "CVE-2021-28714",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28714"
},
{
"name": "CVE-2021-28715",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28715"
}
],
"links": [],
"reference": "CERTFR-2022-AVI-037",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2022-01-13T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Citrix Hypervisor.\nElles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non\nsp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de code arbitraire et un d\u00e9ni de\nservice.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Citrix Hypervisor",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX335432 du 12 janvier 2022",
"url": "https://support.citrix.com/article/CTX335432"
}
]
}
CERTFR-2021-AVI-901
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Xen. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service, une atteinte à l'intégrité des données et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| XEN | Xen | Xen versions 3.2 et ultérieures sans le dernier correctif de sécurité XSA-385 | ||
| XEN | Xen | Xen versions 4.13 et antérieures sans le dernier correctif de sécurité XSA-387 | ||
| XEN | Xen | Xen versions 4.7 et ultérieures sans le dernier correctif de sécurité XSA-388 | ||
| XEN | Xen | Xen versions 3.4 et ultérieures sans le dernier correctif de sécurité XSA-389 |
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Xen versions 3.2 et ult\u00e9rieures sans le dernier correctif de s\u00e9curit\u00e9 XSA-385",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions 4.13 et ant\u00e9rieures sans le dernier correctif de s\u00e9curit\u00e9 XSA-387",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions 4.7 et ult\u00e9rieures sans le dernier correctif de s\u00e9curit\u00e9 XSA-388",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions 3.4 et ult\u00e9rieures sans le dernier correctif de s\u00e9curit\u00e9 XSA-389",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-28706",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28706"
},
{
"name": "CVE-2021-28704",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28704"
},
{
"name": "CVE-2021-28705",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28705"
},
{
"name": "CVE-2021-28709",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28709"
},
{
"name": "CVE-2021-28708",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28708"
},
{
"name": "CVE-2021-28703",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28703"
},
{
"name": "CVE-2021-28707",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28707"
}
],
"links": [],
"reference": "CERTFR-2021-AVI-901",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-11-24T00:00:00.000000"
}
],
"risks": [
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Xen. Certaines\nd\u0027entre elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service,\nune atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Xen",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Xen XSA-389 du 23 novembre 2021",
"url": "https://xenbits.xen.org/xsa/advisory-389.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Xen XSA-387 du 23 novembre 2021",
"url": "https://xenbits.xen.org/xsa/advisory-387.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Xen XSA-388 du 23 novembre 2021",
"url": "https://xenbits.xen.org/xsa/advisory-388.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Xen XSA-385 du 23 novembre 2021",
"url": "https://xenbits.xen.org/xsa/advisory-385.html"
}
]
}
GSD-2021-28704
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2021-28704",
"description": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"id": "GSD-2021-28704",
"references": [
"https://www.suse.com/security/cve/CVE-2021-28704.html",
"https://www.debian.org/security/2021/dsa-5017"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2021-28704"
],
"details": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"id": "GSD-2021-28704",
"modified": "2023-12-13T01:23:28.886117Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@xen.org",
"ID": "CVE-2021-28704",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "xen",
"version": {
"version_data": [
{
"version_value": "xen-unstable"
}
]
}
},
{
"product_name": "xen",
"version": {
"version_data": [
{
"version_affected": "?\u003c",
"version_value": "4.12"
},
{
"version_affected": "\u003e=",
"version_value": "4.12.x"
},
{
"version_affected": "!\u003e",
"version_value": "4.14.x"
}
]
}
},
{
"product_name": "xen",
"version": {
"version_data": [
{
"version_value": "4.15.x"
}
]
}
}
]
},
"vendor_name": "Xen"
}
]
}
},
"configuration": {
"configuration_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "All Xen versions from 4.7 onwards are affected. Xen versions 4.6 and\nolder are not affected.\n\nOnly x86 HVM and PVH guests started in populate-on-demand mode can\nleverage the vulnerability. Populate-on-demand mode is activated\nwhen the guest\u0027s xl configuration file specifies a \"maxmem\" value which\nis larger than the \"memory\" value."
}
]
}
}
},
"credit": {
"credit_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "This issue was discovered by Jan Beulich of SUSE."
}
]
}
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2)."
}
]
},
"impact": {
"impact_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Malicious or buggy guest kernels may be able to mount a Denial of\nService (DoS) attack affecting the entire system. Privilege escalation\nand information leaks cannot be ruled out."
}
]
}
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "unknown"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://xenbits.xenproject.org/xsa/advisory-388.txt",
"refsource": "MISC",
"url": "https://xenbits.xenproject.org/xsa/advisory-388.txt"
},
{
"name": "FEDORA-2021-03645e9807",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/"
},
{
"name": "DSA-5017",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2021/dsa-5017"
},
{
"name": "FEDORA-2021-2b3a2de94f",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/"
},
{
"name": "GLSA-202402-07",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202402-07"
}
]
},
"workaround": {
"workaround_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Not starting x86 HVM or PVH guests in populate-on-demand mode will avoid\nthe vulnerability."
}
]
}
}
}
},
"nvd.nist.gov": {
"cve": {
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "F23764AD-488F-4ABC-95D5-FC1F64E0BC2E",
"versionEndIncluding": "4.15.1",
"versionStartIncluding": "4.7.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
"matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
"matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2)."
},
{
"lang": "es",
"value": "Operaciones PoD en GFNs desalineados [Este registro de informaci\u00f3n CNA se relaciona con m\u00faltiples CVEs; el texto explica qu\u00e9 aspectos/vulnerabilidades corresponden a cada CVE. Los hu\u00e9spedes x86 HVM y PVH pueden iniciarse en modo populate-on-demand (PoD), para proporcionar una manera de que m\u00e1s tarde les sea asignado f\u00e1cilmente m\u00e1s memoria. A los hu\u00e9spedes les es permitido controlar determinados aspectos P2M de p\u00e1ginas individuales por medio de hypercalls. Estas hypercalls pueden actuar sobre rangos de p\u00e1ginas especificados por medio de \u00f3rdenes de p\u00e1ginas (resultando en un n\u00famero de p\u00e1ginas de potencia 2). La implementaci\u00f3n de algunas de estas hypercalls para PoD no obliga a que el n\u00famero de fotograma de la p\u00e1gina base est\u00e9 apropiadamente alineado para el orden especificado, aunque algunos c\u00f3digos involucrados en el manejo de PoD realmente hacen tal suposici\u00f3n. Estas operaciones son XENMEM_decrease_reservation (CVE-2021-28704) y XENMEM_populate_physmap (CVE-2021-28707), esta \u00faltima usable s\u00f3lo por los dominios que controlan el hu\u00e9sped, es decir, un qemu no privilegiado o un dominio stub. (Parche 1, que combina la correcci\u00f3n de estos dos problemas.) Adem\u00e1s, el manejo de XENMEM_decrease_reservation tambi\u00e9n puede desencadenar un bloqueo en el host cuando el orden de p\u00e1gina especificado no es ni 4k ni 2M ni 1G (CVE-2021-28708, parche 2)"
}
],
"id": "CVE-2021-28704",
"lastModified": "2024-02-04T08:15:08.623",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.0,
"impactScore": 6.0,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-11-24T01:15:08.030",
"references": [
{
"source": "security@xen.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/"
},
{
"source": "security@xen.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/"
},
{
"source": "security@xen.org",
"url": "https://security.gentoo.org/glsa/202402-07"
},
{
"source": "security@xen.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2021/dsa-5017"
},
{
"source": "security@xen.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://xenbits.xenproject.org/xsa/advisory-388.txt"
}
],
"sourceIdentifier": "security@xen.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
}
}
}
OPENSUSE-SU-2021:1543-1
Vulnerability from csaf_opensuse - Published: 2021-12-06 13:07 - Updated: 2021-12-06 13:07Summary
Security update for xen
Notes
Title of the patch
Security update for xen
Description of the patch
This update for xen fixes the following issues:
- CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363).
- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).
- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).
- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).
- Update to Xen 4.13.4 bug fix release (bsc#1027519).
This update was imported from the SUSE:SLE-15-SP2:Update update project.
Patchnames
openSUSE-2021-1543
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363).\n- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).\n- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).\n- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).\n\n- Update to Xen 4.13.4 bug fix release (bsc#1027519).\n\nThis update was imported from the SUSE:SLE-15-SP2:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2021-1543",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_1543-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:1543-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HUTTCXZ3RCSXYS25JPMTEXNGYRSDKJ26/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:1543-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HUTTCXZ3RCSXYS25JPMTEXNGYRSDKJ26/"
},
{
"category": "self",
"summary": "SUSE Bug 1027519",
"url": "https://bugzilla.suse.com/1027519"
},
{
"category": "self",
"summary": "SUSE Bug 1191363",
"url": "https://bugzilla.suse.com/1191363"
},
{
"category": "self",
"summary": "SUSE Bug 1192554",
"url": "https://bugzilla.suse.com/1192554"
},
{
"category": "self",
"summary": "SUSE Bug 1192557",
"url": "https://bugzilla.suse.com/1192557"
},
{
"category": "self",
"summary": "SUSE Bug 1192559",
"url": "https://bugzilla.suse.com/1192559"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28702 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28704 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28705 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28706 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28707 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28708 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28709 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28709/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2021-12-06T13:07:00Z",
"generator": {
"date": "2021-12-06T13:07:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:1543-1",
"initial_release_date": "2021-12-06T13:07:00Z",
"revision_history": [
{
"date": "2021-12-06T13:07:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.13.4_02-lp152.2.33.1.i586",
"product": {
"name": "xen-devel-4.13.4_02-lp152.2.33.1.i586",
"product_id": "xen-devel-4.13.4_02-lp152.2.33.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.13.4_02-lp152.2.33.1.i586",
"product": {
"name": "xen-libs-4.13.4_02-lp152.2.33.1.i586",
"product_id": "xen-libs-4.13.4_02-lp152.2.33.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"product": {
"name": "xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"product_id": "xen-tools-domU-4.13.4_02-lp152.2.33.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch",
"product_id": "xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.13.4_02-lp152.2.33.1.x86_64",
"product": {
"name": "xen-4.13.4_02-lp152.2.33.1.x86_64",
"product_id": "xen-4.13.4_02-lp152.2.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"product": {
"name": "xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"product_id": "xen-devel-4.13.4_02-lp152.2.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"product": {
"name": "xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"product_id": "xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"product": {
"name": "xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"product_id": "xen-libs-4.13.4_02-lp152.2.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"product_id": "xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"product": {
"name": "xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"product_id": "xen-tools-4.13.4_02-lp152.2.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"product": {
"name": "xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"product_id": "xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.2",
"product": {
"name": "openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.13.4_02-lp152.2.33.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64"
},
"product_reference": "xen-4.13.4_02-lp152.2.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.13.4_02-lp152.2.33.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586"
},
"product_reference": "xen-devel-4.13.4_02-lp152.2.33.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.13.4_02-lp152.2.33.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64"
},
"product_reference": "xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64"
},
"product_reference": "xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.13.4_02-lp152.2.33.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586"
},
"product_reference": "xen-libs-4.13.4_02-lp152.2.33.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.13.4_02-lp152.2.33.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64"
},
"product_reference": "xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.13.4_02-lp152.2.33.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64"
},
"product_reference": "xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.13.4_02-lp152.2.33.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586"
},
"product_reference": "xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64"
},
"product_reference": "xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28702"
}
],
"notes": [
{
"category": "general",
"text": "PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, \"RMRR\"). These are typically used for platform tasks such as legacy USB emulation. If such a device is passed through to a guest, then on guest shutdown the device is not properly deassigned. The IOMMU configuration for these devices which are not properly deassigned ends up pointing to a freed data structure, including the IO Pagetables. Subsequent DMA or interrupts from the device will have unpredictable behaviour, ranging from IOMMU faults to memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28702",
"url": "https://www.suse.com/security/cve/CVE-2021-28702"
},
{
"category": "external",
"summary": "SUSE Bug 1191363 for CVE-2021-28702",
"url": "https://bugzilla.suse.com/1191363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-06T13:07:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-28702"
},
{
"cve": "CVE-2021-28704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28704"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28704",
"url": "https://www.suse.com/security/cve/CVE-2021-28704"
},
{
"category": "external",
"summary": "SUSE Bug 1192557 for CVE-2021-28704",
"url": "https://bugzilla.suse.com/1192557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-06T13:07:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-28704"
},
{
"cve": "CVE-2021-28705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28705"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28705",
"url": "https://www.suse.com/security/cve/CVE-2021-28705"
},
{
"category": "external",
"summary": "SUSE Bug 1192559 for CVE-2021-28705",
"url": "https://bugzilla.suse.com/1192559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-06T13:07:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-28705"
},
{
"cve": "CVE-2021-28706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28706"
}
],
"notes": [
{
"category": "general",
"text": "guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precision, which may overflow. It would then only be the overflowed (and hence small) number which gets compared against the established upper bound.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28706",
"url": "https://www.suse.com/security/cve/CVE-2021-28706"
},
{
"category": "external",
"summary": "SUSE Bug 1192554 for CVE-2021-28706",
"url": "https://bugzilla.suse.com/1192554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-06T13:07:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-28706"
},
{
"cve": "CVE-2021-28707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28707",
"url": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-06T13:07:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-28707"
},
{
"cve": "CVE-2021-28708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28708",
"url": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-06T13:07:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-28708"
},
{
"cve": "CVE-2021-28709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28709",
"url": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:xen-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-devel-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-doc-html-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-32bit-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-libs-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.i586",
"openSUSE Leap 15.2:xen-tools-domU-4.13.4_02-lp152.2.33.1.x86_64",
"openSUSE Leap 15.2:xen-tools-xendomains-wait-disk-4.13.4_02-lp152.2.33.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-06T13:07:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-28709"
}
]
}
OPENSUSE-SU-2021:3968-1
Vulnerability from csaf_opensuse - Published: 2021-12-07 14:31 - Updated: 2021-12-07 14:31Summary
Security update for xen
Notes
Title of the patch
Security update for xen
Description of the patch
This update for xen fixes the following issues:
- CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363).
- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).
- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).
- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).
- Update to Xen 4.14.3 bug fix release (bsc#1027519).
Patchnames
openSUSE-SLE-15.3-2021-3968
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363).\n- CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557).\n- CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559).\n- CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554).\n\n- Update to Xen 4.14.3 bug fix release (bsc#1027519).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-SLE-15.3-2021-3968",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_3968-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:3968-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ELAKLWY4EZXSLS4BS47VPF2URIP3BLNK/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:3968-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ELAKLWY4EZXSLS4BS47VPF2URIP3BLNK/"
},
{
"category": "self",
"summary": "SUSE Bug 1027519",
"url": "https://bugzilla.suse.com/1027519"
},
{
"category": "self",
"summary": "SUSE Bug 1191363",
"url": "https://bugzilla.suse.com/1191363"
},
{
"category": "self",
"summary": "SUSE Bug 1192554",
"url": "https://bugzilla.suse.com/1192554"
},
{
"category": "self",
"summary": "SUSE Bug 1192557",
"url": "https://bugzilla.suse.com/1192557"
},
{
"category": "self",
"summary": "SUSE Bug 1192559",
"url": "https://bugzilla.suse.com/1192559"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28702 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28702/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28704 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28705 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28705/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28706 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28706/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28707 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28707/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28708 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28708/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28709 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28709/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2021-12-07T14:31:08Z",
"generator": {
"date": "2021-12-07T14:31:08Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:3968-1",
"initial_release_date": "2021-12-07T14:31:08Z",
"revision_history": [
{
"date": "2021-12-07T14:31:08Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.14.3_04-3.15.1.aarch64",
"product": {
"name": "xen-4.14.3_04-3.15.1.aarch64",
"product_id": "xen-4.14.3_04-3.15.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.14.3_04-3.15.1.aarch64",
"product": {
"name": "xen-devel-4.14.3_04-3.15.1.aarch64",
"product_id": "xen-devel-4.14.3_04-3.15.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.14.3_04-3.15.1.aarch64",
"product": {
"name": "xen-doc-html-4.14.3_04-3.15.1.aarch64",
"product_id": "xen-doc-html-4.14.3_04-3.15.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.14.3_04-3.15.1.aarch64",
"product": {
"name": "xen-libs-4.14.3_04-3.15.1.aarch64",
"product_id": "xen-libs-4.14.3_04-3.15.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.14.3_04-3.15.1.aarch64",
"product": {
"name": "xen-tools-4.14.3_04-3.15.1.aarch64",
"product_id": "xen-tools-4.14.3_04-3.15.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"product": {
"name": "xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"product_id": "xen-tools-domU-4.14.3_04-3.15.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch",
"product_id": "xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-4.14.3_04-3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-devel-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-devel-4.14.3_04-3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-doc-html-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-doc-html-4.14.3_04-3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-libs-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-libs-4.14.3_04-3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-libs-32bit-4.14.3_04-3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-tools-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-tools-4.14.3_04-3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"product": {
"name": "xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"product_id": "xen-tools-domU-4.14.3_04-3.15.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.14.3_04-3.15.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64"
},
"product_reference": "xen-4.14.3_04-3.15.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.14.3_04-3.15.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.14.3_04-3.15.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64"
},
"product_reference": "xen-devel-4.14.3_04-3.15.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.14.3_04-3.15.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-devel-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.14.3_04-3.15.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64"
},
"product_reference": "xen-doc-html-4.14.3_04-3.15.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.14.3_04-3.15.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-doc-html-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.14.3_04-3.15.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64"
},
"product_reference": "xen-libs-4.14.3_04-3.15.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.14.3_04-3.15.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-libs-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.14.3_04-3.15.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.14.3_04-3.15.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64"
},
"product_reference": "xen-tools-4.14.3_04-3.15.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.14.3_04-3.15.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-tools-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.14.3_04-3.15.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64"
},
"product_reference": "xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.14.3_04-3.15.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64"
},
"product_reference": "xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-28702",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28702"
}
],
"notes": [
{
"category": "general",
"text": "PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, \"RMRR\"). These are typically used for platform tasks such as legacy USB emulation. If such a device is passed through to a guest, then on guest shutdown the device is not properly deassigned. The IOMMU configuration for these devices which are not properly deassigned ends up pointing to a freed data structure, including the IO Pagetables. Subsequent DMA or interrupts from the device will have unpredictable behaviour, ranging from IOMMU faults to memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28702",
"url": "https://www.suse.com/security/cve/CVE-2021-28702"
},
{
"category": "external",
"summary": "SUSE Bug 1191363 for CVE-2021-28702",
"url": "https://bugzilla.suse.com/1191363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:08Z",
"details": "moderate"
}
],
"title": "CVE-2021-28702"
},
{
"cve": "CVE-2021-28704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28704"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28704",
"url": "https://www.suse.com/security/cve/CVE-2021-28704"
},
{
"category": "external",
"summary": "SUSE Bug 1192557 for CVE-2021-28704",
"url": "https://bugzilla.suse.com/1192557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:08Z",
"details": "moderate"
}
],
"title": "CVE-2021-28704"
},
{
"cve": "CVE-2021-28705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28705"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28705",
"url": "https://www.suse.com/security/cve/CVE-2021-28705"
},
{
"category": "external",
"summary": "SUSE Bug 1192559 for CVE-2021-28705",
"url": "https://bugzilla.suse.com/1192559"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:08Z",
"details": "moderate"
}
],
"title": "CVE-2021-28705"
},
{
"cve": "CVE-2021-28706",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28706"
}
],
"notes": [
{
"category": "general",
"text": "guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precision, which may overflow. It would then only be the overflowed (and hence small) number which gets compared against the established upper bound.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28706",
"url": "https://www.suse.com/security/cve/CVE-2021-28706"
},
{
"category": "external",
"summary": "SUSE Bug 1192554 for CVE-2021-28706",
"url": "https://bugzilla.suse.com/1192554"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:08Z",
"details": "moderate"
}
],
"title": "CVE-2021-28706"
},
{
"cve": "CVE-2021-28707",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28707",
"url": "https://www.suse.com/security/cve/CVE-2021-28707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:08Z",
"details": "moderate"
}
],
"title": "CVE-2021-28707"
},
{
"cve": "CVE-2021-28708",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"notes": [
{
"category": "general",
"text": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28708",
"url": "https://www.suse.com/security/cve/CVE-2021-28708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:08Z",
"details": "moderate"
}
],
"title": "CVE-2021-28708"
},
{
"cve": "CVE-2021-28709",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"notes": [
{
"category": "general",
"text": "issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). In some cases the hypervisor carries out the requests by splitting them into smaller chunks. Error handling in certain PoD cases has been insufficient in that in particular partial success of some operations was not properly accounted for. There are two code paths affected - page removal (CVE-2021-28705) and insertion of new pages (CVE-2021-28709). (We provide one patch which combines the fix to both issues.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28709",
"url": "https://www.suse.com/security/cve/CVE-2021-28709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.3_04-3.15.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-12-07T14:31:08Z",
"details": "moderate"
}
],
"title": "CVE-2021-28709"
}
]
}
FKIE_CVE-2021-28704
Vulnerability from fkie_nvd - Published: 2021-11-24 01:15 - Updated: 2024-11-21 06:00
Severity ?
Summary
PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| xen | xen | * | |
| fedoraproject | fedora | 34 | |
| fedoraproject | fedora | 35 | |
| debian | debian_linux | 9.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "F23764AD-488F-4ABC-95D5-FC1F64E0BC2E",
"versionEndIncluding": "4.15.1",
"versionStartIncluding": "4.7.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
"matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
"matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2)."
},
{
"lang": "es",
"value": "Operaciones PoD en GFNs desalineados [Este registro de informaci\u00f3n CNA se relaciona con m\u00faltiples CVEs; el texto explica qu\u00e9 aspectos/vulnerabilidades corresponden a cada CVE. Los hu\u00e9spedes x86 HVM y PVH pueden iniciarse en modo populate-on-demand (PoD), para proporcionar una manera de que m\u00e1s tarde les sea asignado f\u00e1cilmente m\u00e1s memoria. A los hu\u00e9spedes les es permitido controlar determinados aspectos P2M de p\u00e1ginas individuales por medio de hypercalls. Estas hypercalls pueden actuar sobre rangos de p\u00e1ginas especificados por medio de \u00f3rdenes de p\u00e1ginas (resultando en un n\u00famero de p\u00e1ginas de potencia 2). La implementaci\u00f3n de algunas de estas hypercalls para PoD no obliga a que el n\u00famero de fotograma de la p\u00e1gina base est\u00e9 apropiadamente alineado para el orden especificado, aunque algunos c\u00f3digos involucrados en el manejo de PoD realmente hacen tal suposici\u00f3n. Estas operaciones son XENMEM_decrease_reservation (CVE-2021-28704) y XENMEM_populate_physmap (CVE-2021-28707), esta \u00faltima usable s\u00f3lo por los dominios que controlan el hu\u00e9sped, es decir, un qemu no privilegiado o un dominio stub. (Parche 1, que combina la correcci\u00f3n de estos dos problemas.) Adem\u00e1s, el manejo de XENMEM_decrease_reservation tambi\u00e9n puede desencadenar un bloqueo en el host cuando el orden de p\u00e1gina especificado no es ni 4k ni 2M ni 1G (CVE-2021-28708, parche 2)"
}
],
"id": "CVE-2021-28704",
"lastModified": "2024-11-21T06:00:10.827",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.0,
"impactScore": 6.0,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-11-24T01:15:08.030",
"references": [
{
"source": "security@xen.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/"
},
{
"source": "security@xen.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/"
},
{
"source": "security@xen.org",
"url": "https://security.gentoo.org/glsa/202402-07"
},
{
"source": "security@xen.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2021/dsa-5017"
},
{
"source": "security@xen.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://xenbits.xenproject.org/xsa/advisory-388.txt"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/202402-07"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2021/dsa-5017"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://xenbits.xenproject.org/xsa/advisory-388.txt"
}
],
"sourceIdentifier": "security@xen.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-GJRP-CPC9-H4R7
Vulnerability from github – Published: 2021-11-25 00:00 – Updated: 2022-06-29 00:00
VLAI?
Details
PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).
Severity ?
8.8 (High)
{
"affected": [],
"aliases": [
"CVE-2021-28704"
],
"database_specific": {
"cwe_ids": [
"CWE-77"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-11-24T01:15:00Z",
"severity": "HIGH"
},
"details": "PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily have more memory assigned. Guests are permitted to control certain P2M aspects of individual pages via hypercalls. These hypercalls may act on ranges of pages specified via page orders (resulting in a power-of-2 number of pages). The implementation of some of these hypercalls for PoD does not enforce the base page frame number to be suitably aligned for the specified order, yet some code involved in PoD handling actually makes such an assumption. These operations are XENMEM_decrease_reservation (CVE-2021-28704) and XENMEM_populate_physmap (CVE-2021-28707), the latter usable only by domains controlling the guest, i.e. a de-privileged qemu or a stub domain. (Patch 1, combining the fix to both these two issues.) In addition handling of XENMEM_decrease_reservation can also trigger a host crash when the specified page order is neither 4k nor 2M nor 1G (CVE-2021-28708, patch 2).",
"id": "GHSA-gjrp-cpc9-h4r7",
"modified": "2022-06-29T00:00:49Z",
"published": "2021-11-25T00:00:40Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-28704"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I7ZGWVVRI4XY2XSTBI3XEMWBXPDVX6OT"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PXUI4VMD52CH3T7YXAG3J2JW7ZNN3SXF"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202402-07"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2021/dsa-5017"
},
{
"type": "WEB",
"url": "https://xenbits.xenproject.org/xsa/advisory-388.txt"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…