Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-34322 (GCVE-0-2023-34322)
Vulnerability from cvelistv5 – Published: 2024-01-05 16:18 – Updated: 2025-11-04 19:16
VLAI
EPSS
Title
top-level shadow reference dropped too early for 64-bit PV guests
Summary
For migration as well as to work around kernels unaware of L1TF (see
XSA-273), PV guests may be run in shadow paging mode. Since Xen itself
needs to be mapped when PV guests run, Xen and shadowed PV guests run
directly the respective shadow page tables. For 64-bit PV guests this
means running on the shadow of the guest root page table.
In the course of dealing with shortage of memory in the shadow pool
associated with a domain, shadows of page tables may be torn down. This
tearing down may include the shadow root page table that the CPU in
question is presently running on. While a precaution exists to
supposedly prevent the tearing down of the underlying live page table,
the time window covered by that precaution isn't large enough.
Severity
7.8 (High)
CWE
- CWE-273 - Improper Check for Dropped Privileges
Assigner
References
1 reference
Date Public
2023-09-19 12:00
Credits
This issue was discovered by Tim Deegan, and Jan Beulich of SUSE.
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2025-11-04T19:16:35.511Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://xenbits.xenproject.org/xsa/advisory-438.html"
},
{
"url": "http://xenbits.xen.org/xsa/advisory-438.html"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2023-34322",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-08-27T15:50:09.329667Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-273",
"description": "CWE-273 Improper Check for Dropped Privileges",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-06-16T18:28:59.286Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "Xen",
"vendor": "Xen",
"versions": [
{
"status": "unknown",
"version": "consult Xen advisory XSA-438"
}
]
}
],
"configurations": [
{
"lang": "en",
"value": "All Xen versions from at least 3.2 onwards are vulnerable. Earlier\nversions have not been inspected.\n\nOnly x86 systems are vulnerable. Only 64-bit PV guests can leverage the\nvulnerability, and only when running in shadow mode. Shadow mode would\nbe in use when migrating guests or as a workaround for XSA-273 (L1TF).\n"
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "This issue was discovered by Tim Deegan, and Jan Beulich of SUSE.\n"
}
],
"datePublic": "2023-09-19T12:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "For migration as well as to work around kernels unaware of L1TF (see\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\ndirectly the respective shadow page tables. For 64-bit PV guests this\nmeans running on the shadow of the guest root page table.\n\nIn the course of dealing with shortage of memory in the shadow pool\nassociated with a domain, shadows of page tables may be torn down. This\ntearing down may include the shadow root page table that the CPU in\nquestion is presently running on. While a precaution exists to\nsupposedly prevent the tearing down of the underlying live page table,\nthe time window covered by that precaution isn\u0027t large enough.\n"
}
],
"impacts": [
{
"descriptions": [
{
"lang": "en",
"value": "Privilege escalation, Denial of Service (DoS) affecting the entire host,\nand information leaks all cannot be ruled out.\n"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-01-05T16:18:01.363Z",
"orgId": "23aa2041-22e1-471f-9209-9b7396fa234f",
"shortName": "XEN"
},
"references": [
{
"url": "https://xenbits.xenproject.org/xsa/advisory-438.html"
}
],
"title": "top-level shadow reference dropped too early for 64-bit PV guests",
"workarounds": [
{
"lang": "en",
"value": "Running only HVM or PVH guests will avoid the vulnerability.\n\nRunning PV guests in the PV shim will also avoid the vulnerability.\n"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "23aa2041-22e1-471f-9209-9b7396fa234f",
"assignerShortName": "XEN",
"cveId": "CVE-2023-34322",
"datePublished": "2024-01-05T16:18:01.363Z",
"dateReserved": "2023-06-01T10:44:17.065Z",
"dateUpdated": "2025-11-04T19:16:35.511Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2023-34322",
"date": "2026-05-27",
"epss": "0.00058",
"percentile": "0.18347"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*\", \"versionStartIncluding\": \"3.2.0\", \"versionEndExcluding\": \"4.15.0\", \"matchCriteriaId\": \"4E4B3C8C-CD2C-4F4F-8F8F-8E1B769333E7\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"For migration as well as to work around kernels unaware of L1TF (see\\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\\ndirectly the respective shadow page tables. For 64-bit PV guests this\\nmeans running on the shadow of the guest root page table.\\n\\nIn the course of dealing with shortage of memory in the shadow pool\\nassociated with a domain, shadows of page tables may be torn down. This\\ntearing down may include the shadow root page table that the CPU in\\nquestion is presently running on. While a precaution exists to\\nsupposedly prevent the tearing down of the underlying live page table,\\nthe time window covered by that precaution isn\u0027t large enough.\\n\"}, {\"lang\": \"es\", \"value\": \"Para la migraci\\u00f3n, as\\u00ed como para evitar kernels que no conocen L1TF (consulte XSA-273), los invitados PV pueden ejecutarse en modo de p\\u00e1gina oculta. Dado que el propio Xen debe mapearse cuando se ejecutan las maquinas PV de invitado, Xen y las shadowed PV de invitado ejecutan directamente las respectivas tablas de p\\u00e1ginas ocultas. Para invitados PV de 64 bits, esto significa ejecutar en la shadow de la tabla de p\\u00e1gina ra\\u00edz del invitado. Al tratar con la escasez de memoria en el shadow pool asociado con un dominio, es posible que se eliminen las tablas de p\\u00e1ginas de shadows. Esta eliminaci\\u00f3n puede incluir la shadow de la tabla de p\\u00e1gina ra\\u00edz en la que se est\\u00e1 ejecutando actualmente la CPU en cuesti\\u00f3n. Si bien existe una precauci\\u00f3n para supuestamente evitar la eliminaci\\u00f3n de la tabla de las p\\u00e1ginas activas subyacente, el per\\u00edodo de tiempo cubierto por esa precauci\\u00f3n no es lo suficientemente grande.\"}]",
"id": "CVE-2023-34322",
"lastModified": "2024-11-21T08:07:00.653",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}]}",
"published": "2024-01-05T17:15:08.447",
"references": "[{\"url\": \"https://xenbits.xenproject.org/xsa/advisory-438.html\", \"source\": \"security@xen.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://xenbits.xenproject.org/xsa/advisory-438.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
"sourceIdentifier": "security@xen.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-273\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-34322\",\"sourceIdentifier\":\"security@xen.org\",\"published\":\"2024-01-05T17:15:08.447\",\"lastModified\":\"2025-11-04T20:16:30.387\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"For migration as well as to work around kernels unaware of L1TF (see\\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\\ndirectly the respective shadow page tables. For 64-bit PV guests this\\nmeans running on the shadow of the guest root page table.\\n\\nIn the course of dealing with shortage of memory in the shadow pool\\nassociated with a domain, shadows of page tables may be torn down. This\\ntearing down may include the shadow root page table that the CPU in\\nquestion is presently running on. While a precaution exists to\\nsupposedly prevent the tearing down of the underlying live page table,\\nthe time window covered by that precaution isn\u0027t large enough.\\n\"},{\"lang\":\"es\",\"value\":\"Para la migraci\u00f3n, as\u00ed como para evitar kernels que no conocen L1TF (consulte XSA-273), los invitados PV pueden ejecutarse en modo de p\u00e1gina oculta. Dado que el propio Xen debe mapearse cuando se ejecutan las maquinas PV de invitado, Xen y las shadowed PV de invitado ejecutan directamente las respectivas tablas de p\u00e1ginas ocultas. Para invitados PV de 64 bits, esto significa ejecutar en la shadow de la tabla de p\u00e1gina ra\u00edz del invitado. Al tratar con la escasez de memoria en el shadow pool asociado con un dominio, es posible que se eliminen las tablas de p\u00e1ginas de shadows. Esta eliminaci\u00f3n puede incluir la shadow de la tabla de p\u00e1gina ra\u00edz en la que se est\u00e1 ejecutando actualmente la CPU en cuesti\u00f3n. Si bien existe una precauci\u00f3n para supuestamente evitar la eliminaci\u00f3n de la tabla de las p\u00e1ginas activas subyacente, el per\u00edodo de tiempo cubierto por esa precauci\u00f3n no es lo suficientemente grande.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-273\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-273\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*\",\"versionStartIncluding\":\"3.2.0\",\"versionEndExcluding\":\"4.15.0\",\"matchCriteriaId\":\"4E4B3C8C-CD2C-4F4F-8F8F-8E1B769333E7\"}]}]}],\"references\":[{\"url\":\"https://xenbits.xenproject.org/xsa/advisory-438.html\",\"source\":\"security@xen.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://xenbits.xen.org/xsa/advisory-438.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://xenbits.xenproject.org/xsa/advisory-438.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://xenbits.xenproject.org/xsa/advisory-438.html\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T16:10:06.455Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-34322\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-08-27T15:50:09.329667Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-273\", \"description\": \"CWE-273 Improper Check for Dropped Privileges\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-08-27T15:51:03.882Z\"}}], \"cna\": {\"title\": \"top-level shadow reference dropped too early for 64-bit PV guests\", \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"This issue was discovered by Tim Deegan, and Jan Beulich of SUSE.\\n\"}], \"impacts\": [{\"descriptions\": [{\"lang\": \"en\", \"value\": \"Privilege escalation, Denial of Service (DoS) affecting the entire host,\\nand information leaks all cannot be ruled out.\\n\"}]}], \"affected\": [{\"vendor\": \"Xen\", \"product\": \"Xen\", \"versions\": [{\"status\": \"unknown\", \"version\": \"consult Xen advisory XSA-438\"}], \"defaultStatus\": \"unknown\"}], \"datePublic\": \"2023-09-19T12:00:00.000Z\", \"references\": [{\"url\": \"https://xenbits.xenproject.org/xsa/advisory-438.html\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Running only HVM or PVH guests will avoid the vulnerability.\\n\\nRunning PV guests in the PV shim will also avoid the vulnerability.\\n\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"For migration as well as to work around kernels unaware of L1TF (see\\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\\ndirectly the respective shadow page tables. For 64-bit PV guests this\\nmeans running on the shadow of the guest root page table.\\n\\nIn the course of dealing with shortage of memory in the shadow pool\\nassociated with a domain, shadows of page tables may be torn down. This\\ntearing down may include the shadow root page table that the CPU in\\nquestion is presently running on. While a precaution exists to\\nsupposedly prevent the tearing down of the underlying live page table,\\nthe time window covered by that precaution isn\u0027t large enough.\\n\"}], \"configurations\": [{\"lang\": \"en\", \"value\": \"All Xen versions from at least 3.2 onwards are vulnerable. Earlier\\nversions have not been inspected.\\n\\nOnly x86 systems are vulnerable. Only 64-bit PV guests can leverage the\\nvulnerability, and only when running in shadow mode. Shadow mode would\\nbe in use when migrating guests or as a workaround for XSA-273 (L1TF).\\n\"}], \"providerMetadata\": {\"orgId\": \"23aa2041-22e1-471f-9209-9b7396fa234f\", \"shortName\": \"XEN\", \"dateUpdated\": \"2024-01-05T16:18:01.363Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-34322\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-06-16T18:28:59.286Z\", \"dateReserved\": \"2023-06-01T10:44:17.065Z\", \"assignerOrgId\": \"23aa2041-22e1-471f-9209-9b7396fa234f\", \"datePublished\": \"2024-01-05T16:18:01.363Z\", \"assignerShortName\": \"XEN\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2023-AVI-0766
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité a été découverte dans les produits Xen. Elle permet à un attaquant de provoquer un déni de service, une atteinte à la confidentialité des données et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| XEN | Xen | Xen versions 3.2.x à 4.15.x sans le correctif de sécurité xsa438-4.15.patch | ||
| XEN | Xen | Xen versions Unstable sans le correctif xsa438.patch | ||
| XEN | Xen | Xen versions 4.17.x sans le correctif de sécurité xsa438-4.17.patch | ||
| XEN | Xen | Xen versions 4.16.x sans le correctif de sécurité xsa438-4.16.patch |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Xen versions 3.2.x \u00e0 4.15.x sans le correctif de s\u00e9curit\u00e9 xsa438-4.15.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions Unstable sans le correctif xsa438.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions 4.17.x sans le correctif de s\u00e9curit\u00e9 xsa438-4.17.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions 4.16.x sans le correctif de s\u00e9curit\u00e9 xsa438-4.16.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2023-34322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34322"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Xen\u00a0advisory-438 du 19 septembre 2023",
"url": "https://xenbits.xen.org/xsa/advisory-438.html"
}
],
"reference": "CERTFR-2023-AVI-0766",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-09-20T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans \u003cspan class=\"textit\"\u003eles\nproduits Xen\u003c/span\u003e. Elle permet \u00e0 un attaquant de provoquer un d\u00e9ni de\nservice, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une \u00e9l\u00e9vation\nde privil\u00e8ges.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans les produits Xen",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Xen advisory-438 du 19 septembre 2023",
"url": null
}
]
}
CERTFR-2023-AVI-0766
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité a été découverte dans les produits Xen. Elle permet à un attaquant de provoquer un déni de service, une atteinte à la confidentialité des données et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| XEN | Xen | Xen versions 3.2.x à 4.15.x sans le correctif de sécurité xsa438-4.15.patch | ||
| XEN | Xen | Xen versions Unstable sans le correctif xsa438.patch | ||
| XEN | Xen | Xen versions 4.17.x sans le correctif de sécurité xsa438-4.17.patch | ||
| XEN | Xen | Xen versions 4.16.x sans le correctif de sécurité xsa438-4.16.patch |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Xen versions 3.2.x \u00e0 4.15.x sans le correctif de s\u00e9curit\u00e9 xsa438-4.15.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions Unstable sans le correctif xsa438.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions 4.17.x sans le correctif de s\u00e9curit\u00e9 xsa438-4.17.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions 4.16.x sans le correctif de s\u00e9curit\u00e9 xsa438-4.16.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2023-34322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34322"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Xen\u00a0advisory-438 du 19 septembre 2023",
"url": "https://xenbits.xen.org/xsa/advisory-438.html"
}
],
"reference": "CERTFR-2023-AVI-0766",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-09-20T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans \u003cspan class=\"textit\"\u003eles\nproduits Xen\u003c/span\u003e. Elle permet \u00e0 un attaquant de provoquer un d\u00e9ni de\nservice, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une \u00e9l\u00e9vation\nde privil\u00e8ges.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans les produits Xen",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Xen advisory-438 du 19 septembre 2023",
"url": null
}
]
}
FKIE_CVE-2023-34322
Vulnerability from fkie_nvd - Published: 2024-01-05 17:15 - Updated: 2025-11-04 20:16
Severity
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
For migration as well as to work around kernels unaware of L1TF (see
XSA-273), PV guests may be run in shadow paging mode. Since Xen itself
needs to be mapped when PV guests run, Xen and shadowed PV guests run
directly the respective shadow page tables. For 64-bit PV guests this
means running on the shadow of the guest root page table.
In the course of dealing with shortage of memory in the shadow pool
associated with a domain, shadows of page tables may be torn down. This
tearing down may include the shadow root page table that the CPU in
question is presently running on. While a precaution exists to
supposedly prevent the tearing down of the underlying live page table,
the time window covered by that precaution isn't large enough.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "4E4B3C8C-CD2C-4F4F-8F8F-8E1B769333E7",
"versionEndExcluding": "4.15.0",
"versionStartIncluding": "3.2.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "For migration as well as to work around kernels unaware of L1TF (see\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\ndirectly the respective shadow page tables. For 64-bit PV guests this\nmeans running on the shadow of the guest root page table.\n\nIn the course of dealing with shortage of memory in the shadow pool\nassociated with a domain, shadows of page tables may be torn down. This\ntearing down may include the shadow root page table that the CPU in\nquestion is presently running on. While a precaution exists to\nsupposedly prevent the tearing down of the underlying live page table,\nthe time window covered by that precaution isn\u0027t large enough.\n"
},
{
"lang": "es",
"value": "Para la migraci\u00f3n, as\u00ed como para evitar kernels que no conocen L1TF (consulte XSA-273), los invitados PV pueden ejecutarse en modo de p\u00e1gina oculta. Dado que el propio Xen debe mapearse cuando se ejecutan las maquinas PV de invitado, Xen y las shadowed PV de invitado ejecutan directamente las respectivas tablas de p\u00e1ginas ocultas. Para invitados PV de 64 bits, esto significa ejecutar en la shadow de la tabla de p\u00e1gina ra\u00edz del invitado. Al tratar con la escasez de memoria en el shadow pool asociado con un dominio, es posible que se eliminen las tablas de p\u00e1ginas de shadows. Esta eliminaci\u00f3n puede incluir la shadow de la tabla de p\u00e1gina ra\u00edz en la que se est\u00e1 ejecutando actualmente la CPU en cuesti\u00f3n. Si bien existe una precauci\u00f3n para supuestamente evitar la eliminaci\u00f3n de la tabla de las p\u00e1ginas activas subyacente, el per\u00edodo de tiempo cubierto por esa precauci\u00f3n no es lo suficientemente grande."
}
],
"id": "CVE-2023-34322",
"lastModified": "2025-11-04T20:16:30.387",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2024-01-05T17:15:08.447",
"references": [
{
"source": "security@xen.org",
"tags": [
"Vendor Advisory"
],
"url": "https://xenbits.xenproject.org/xsa/advisory-438.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://xenbits.xen.org/xsa/advisory-438.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://xenbits.xenproject.org/xsa/advisory-438.html"
}
],
"sourceIdentifier": "security@xen.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-273"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-273"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
GHSA-3QXP-P56X-R4H3
Vulnerability from github – Published: 2024-01-05 18:30 – Updated: 2025-11-04 21:30
VLAI
Details
For migration as well as to work around kernels unaware of L1TF (see XSA-273), PV guests may be run in shadow paging mode. Since Xen itself needs to be mapped when PV guests run, Xen and shadowed PV guests run directly the respective shadow page tables. For 64-bit PV guests this means running on the shadow of the guest root page table.
In the course of dealing with shortage of memory in the shadow pool associated with a domain, shadows of page tables may be torn down. This tearing down may include the shadow root page table that the CPU in question is presently running on. While a precaution exists to supposedly prevent the tearing down of the underlying live page table, the time window covered by that precaution isn't large enough.
Severity
7.8 (High)
{
"affected": [],
"aliases": [
"CVE-2023-34322"
],
"database_specific": {
"cwe_ids": [
"CWE-273"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-01-05T17:15:08Z",
"severity": "HIGH"
},
"details": "For migration as well as to work around kernels unaware of L1TF (see\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\ndirectly the respective shadow page tables. For 64-bit PV guests this\nmeans running on the shadow of the guest root page table.\n\nIn the course of dealing with shortage of memory in the shadow pool\nassociated with a domain, shadows of page tables may be torn down. This\ntearing down may include the shadow root page table that the CPU in\nquestion is presently running on. While a precaution exists to\nsupposedly prevent the tearing down of the underlying live page table,\nthe time window covered by that precaution isn\u0027t large enough.",
"id": "GHSA-3qxp-p56x-r4h3",
"modified": "2025-11-04T21:30:54Z",
"published": "2024-01-05T18:30:25Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-34322"
},
{
"type": "WEB",
"url": "https://xenbits.xenproject.org/xsa/advisory-438.html"
},
{
"type": "WEB",
"url": "http://xenbits.xen.org/xsa/advisory-438.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2023-34322
Vulnerability from gsd - Updated: 2023-12-13 01:20Details
For migration as well as to work around kernels unaware of L1TF (see
XSA-273), PV guests may be run in shadow paging mode. Since Xen itself
needs to be mapped when PV guests run, Xen and shadowed PV guests run
directly the respective shadow page tables. For 64-bit PV guests this
means running on the shadow of the guest root page table.
In the course of dealing with shortage of memory in the shadow pool
associated with a domain, shadows of page tables may be torn down. This
tearing down may include the shadow root page table that the CPU in
question is presently running on. While a precaution exists to
supposedly prevent the tearing down of the underlying live page table,
the time window covered by that precaution isn't large enough.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2023-34322",
"id": "GSD-2023-34322"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2023-34322"
],
"details": "For migration as well as to work around kernels unaware of L1TF (see\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\ndirectly the respective shadow page tables. For 64-bit PV guests this\nmeans running on the shadow of the guest root page table.\n\nIn the course of dealing with shortage of memory in the shadow pool\nassociated with a domain, shadows of page tables may be torn down. This\ntearing down may include the shadow root page table that the CPU in\nquestion is presently running on. While a precaution exists to\nsupposedly prevent the tearing down of the underlying live page table,\nthe time window covered by that precaution isn\u0027t large enough.\n",
"id": "GSD-2023-34322",
"modified": "2023-12-13T01:20:30.737913Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@xen.org",
"ID": "CVE-2023-34322",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Xen",
"version": {
"version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"defaultStatus": "unknown",
"versions": [
{
"status": "unknown",
"version": "consult Xen advisory XSA-438"
}
]
}
}
]
}
}
]
},
"vendor_name": "Xen"
}
]
}
},
"configuration": [
{
"lang": "en",
"value": "All Xen versions from at least 3.2 onwards are vulnerable. Earlier\nversions have not been inspected.\n\nOnly x86 systems are vulnerable. Only 64-bit PV guests can leverage the\nvulnerability, and only when running in shadow mode. Shadow mode would\nbe in use when migrating guests or as a workaround for XSA-273 (L1TF).\n"
}
],
"credits": [
{
"lang": "en",
"value": "This issue was discovered by Tim Deegan, and Jan Beulich of SUSE.\n"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "For migration as well as to work around kernels unaware of L1TF (see\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\ndirectly the respective shadow page tables. For 64-bit PV guests this\nmeans running on the shadow of the guest root page table.\n\nIn the course of dealing with shortage of memory in the shadow pool\nassociated with a domain, shadows of page tables may be torn down. This\ntearing down may include the shadow root page table that the CPU in\nquestion is presently running on. While a precaution exists to\nsupposedly prevent the tearing down of the underlying live page table,\nthe time window covered by that precaution isn\u0027t large enough.\n"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://xenbits.xenproject.org/xsa/advisory-438.html",
"refsource": "MISC",
"url": "https://xenbits.xenproject.org/xsa/advisory-438.html"
}
]
},
"work_around": [
{
"lang": "en",
"value": "Running only HVM or PVH guests will avoid the vulnerability.\n\nRunning PV guests in the PV shim will also avoid the vulnerability.\n"
}
]
},
"nvd.nist.gov": {
"cve": {
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "4E4B3C8C-CD2C-4F4F-8F8F-8E1B769333E7",
"versionEndExcluding": "4.15.0",
"versionStartIncluding": "3.2.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "For migration as well as to work around kernels unaware of L1TF (see\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\ndirectly the respective shadow page tables. For 64-bit PV guests this\nmeans running on the shadow of the guest root page table.\n\nIn the course of dealing with shortage of memory in the shadow pool\nassociated with a domain, shadows of page tables may be torn down. This\ntearing down may include the shadow root page table that the CPU in\nquestion is presently running on. While a precaution exists to\nsupposedly prevent the tearing down of the underlying live page table,\nthe time window covered by that precaution isn\u0027t large enough.\n"
},
{
"lang": "es",
"value": "Para la migraci\u00f3n, as\u00ed como para evitar kernels que no conocen L1TF (consulte XSA-273), los invitados PV pueden ejecutarse en modo de p\u00e1gina oculta. Dado que el propio Xen debe mapearse cuando se ejecutan las maquinas PV de invitado, Xen y las shadowed PV de invitado ejecutan directamente las respectivas tablas de p\u00e1ginas ocultas. Para invitados PV de 64 bits, esto significa ejecutar en la shadow de la tabla de p\u00e1gina ra\u00edz del invitado. Al tratar con la escasez de memoria en el shadow pool asociado con un dominio, es posible que se eliminen las tablas de p\u00e1ginas de shadows. Esta eliminaci\u00f3n puede incluir la shadow de la tabla de p\u00e1gina ra\u00edz en la que se est\u00e1 ejecutando actualmente la CPU en cuesti\u00f3n. Si bien existe una precauci\u00f3n para supuestamente evitar la eliminaci\u00f3n de la tabla de las p\u00e1ginas activas subyacente, el per\u00edodo de tiempo cubierto por esa precauci\u00f3n no es lo suficientemente grande."
}
],
"id": "CVE-2023-34322",
"lastModified": "2024-01-11T17:07:43.207",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2024-01-05T17:15:08.447",
"references": [
{
"source": "security@xen.org",
"tags": [
"Vendor Advisory"
],
"url": "https://xenbits.xenproject.org/xsa/advisory-438.html"
}
],
"sourceIdentifier": "security@xen.org",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-273"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
}
}
}
OPENSUSE-SU-2024:13257-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
xen-4.17.2_04-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: xen-4.17.2_04-1.1 on GA media
Description of the patch: These are all security issues fixed in the xen-4.17.2_04-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-13257
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:xen-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:xen-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "xen-4.17.2_04-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the xen-4.17.2_04-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-13257",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13257-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-20588 page",
"url": "https://www.suse.com/security/cve/CVE-2023-20588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-34322 page",
"url": "https://www.suse.com/security/cve/CVE-2023-34322/"
}
],
"title": "xen-4.17.2_04-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:13257-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.17.2_04-1.1.aarch64",
"product": {
"name": "xen-4.17.2_04-1.1.aarch64",
"product_id": "xen-4.17.2_04-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.17.2_04-1.1.aarch64",
"product": {
"name": "xen-devel-4.17.2_04-1.1.aarch64",
"product_id": "xen-devel-4.17.2_04-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.17.2_04-1.1.aarch64",
"product": {
"name": "xen-doc-html-4.17.2_04-1.1.aarch64",
"product_id": "xen-doc-html-4.17.2_04-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.17.2_04-1.1.aarch64",
"product": {
"name": "xen-libs-4.17.2_04-1.1.aarch64",
"product_id": "xen-libs-4.17.2_04-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.17.2_04-1.1.aarch64",
"product": {
"name": "xen-tools-4.17.2_04-1.1.aarch64",
"product_id": "xen-tools-4.17.2_04-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.17.2_04-1.1.aarch64",
"product": {
"name": "xen-tools-domU-4.17.2_04-1.1.aarch64",
"product_id": "xen-tools-domU-4.17.2_04-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64",
"product_id": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.17.2_04-1.1.ppc64le",
"product": {
"name": "xen-4.17.2_04-1.1.ppc64le",
"product_id": "xen-4.17.2_04-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-devel-4.17.2_04-1.1.ppc64le",
"product": {
"name": "xen-devel-4.17.2_04-1.1.ppc64le",
"product_id": "xen-devel-4.17.2_04-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.17.2_04-1.1.ppc64le",
"product": {
"name": "xen-doc-html-4.17.2_04-1.1.ppc64le",
"product_id": "xen-doc-html-4.17.2_04-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-libs-4.17.2_04-1.1.ppc64le",
"product": {
"name": "xen-libs-4.17.2_04-1.1.ppc64le",
"product_id": "xen-libs-4.17.2_04-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-tools-4.17.2_04-1.1.ppc64le",
"product": {
"name": "xen-tools-4.17.2_04-1.1.ppc64le",
"product_id": "xen-tools-4.17.2_04-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.17.2_04-1.1.ppc64le",
"product": {
"name": "xen-tools-domU-4.17.2_04-1.1.ppc64le",
"product_id": "xen-tools-domU-4.17.2_04-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le",
"product_id": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.17.2_04-1.1.s390x",
"product": {
"name": "xen-4.17.2_04-1.1.s390x",
"product_id": "xen-4.17.2_04-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-devel-4.17.2_04-1.1.s390x",
"product": {
"name": "xen-devel-4.17.2_04-1.1.s390x",
"product_id": "xen-devel-4.17.2_04-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.17.2_04-1.1.s390x",
"product": {
"name": "xen-doc-html-4.17.2_04-1.1.s390x",
"product_id": "xen-doc-html-4.17.2_04-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-libs-4.17.2_04-1.1.s390x",
"product": {
"name": "xen-libs-4.17.2_04-1.1.s390x",
"product_id": "xen-libs-4.17.2_04-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-tools-4.17.2_04-1.1.s390x",
"product": {
"name": "xen-tools-4.17.2_04-1.1.s390x",
"product_id": "xen-tools-4.17.2_04-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.17.2_04-1.1.s390x",
"product": {
"name": "xen-tools-domU-4.17.2_04-1.1.s390x",
"product_id": "xen-tools-domU-4.17.2_04-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x",
"product_id": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.17.2_04-1.1.x86_64",
"product": {
"name": "xen-4.17.2_04-1.1.x86_64",
"product_id": "xen-4.17.2_04-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.17.2_04-1.1.x86_64",
"product": {
"name": "xen-devel-4.17.2_04-1.1.x86_64",
"product_id": "xen-devel-4.17.2_04-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.17.2_04-1.1.x86_64",
"product": {
"name": "xen-doc-html-4.17.2_04-1.1.x86_64",
"product_id": "xen-doc-html-4.17.2_04-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.17.2_04-1.1.x86_64",
"product": {
"name": "xen-libs-4.17.2_04-1.1.x86_64",
"product_id": "xen-libs-4.17.2_04-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.17.2_04-1.1.x86_64",
"product": {
"name": "xen-tools-4.17.2_04-1.1.x86_64",
"product_id": "xen-tools-4.17.2_04-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.17.2_04-1.1.x86_64",
"product": {
"name": "xen-tools-domU-4.17.2_04-1.1.x86_64",
"product_id": "xen-tools-domU-4.17.2_04-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64",
"product_id": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.17.2_04-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.17.2_04-1.1.aarch64"
},
"product_reference": "xen-4.17.2_04-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.17.2_04-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.17.2_04-1.1.ppc64le"
},
"product_reference": "xen-4.17.2_04-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.17.2_04-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.17.2_04-1.1.s390x"
},
"product_reference": "xen-4.17.2_04-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.17.2_04-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.17.2_04-1.1.x86_64"
},
"product_reference": "xen-4.17.2_04-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.17.2_04-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.aarch64"
},
"product_reference": "xen-devel-4.17.2_04-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.17.2_04-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.ppc64le"
},
"product_reference": "xen-devel-4.17.2_04-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.17.2_04-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.s390x"
},
"product_reference": "xen-devel-4.17.2_04-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.17.2_04-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.x86_64"
},
"product_reference": "xen-devel-4.17.2_04-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.17.2_04-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.aarch64"
},
"product_reference": "xen-doc-html-4.17.2_04-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.17.2_04-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.ppc64le"
},
"product_reference": "xen-doc-html-4.17.2_04-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.17.2_04-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.s390x"
},
"product_reference": "xen-doc-html-4.17.2_04-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.17.2_04-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.x86_64"
},
"product_reference": "xen-doc-html-4.17.2_04-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.17.2_04-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.aarch64"
},
"product_reference": "xen-libs-4.17.2_04-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.17.2_04-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.ppc64le"
},
"product_reference": "xen-libs-4.17.2_04-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.17.2_04-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.s390x"
},
"product_reference": "xen-libs-4.17.2_04-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.17.2_04-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.x86_64"
},
"product_reference": "xen-libs-4.17.2_04-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.17.2_04-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.aarch64"
},
"product_reference": "xen-tools-4.17.2_04-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.17.2_04-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.ppc64le"
},
"product_reference": "xen-tools-4.17.2_04-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.17.2_04-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.s390x"
},
"product_reference": "xen-tools-4.17.2_04-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.17.2_04-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.x86_64"
},
"product_reference": "xen-tools-4.17.2_04-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.17.2_04-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.aarch64"
},
"product_reference": "xen-tools-domU-4.17.2_04-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.17.2_04-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.ppc64le"
},
"product_reference": "xen-tools-domU-4.17.2_04-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.17.2_04-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.s390x"
},
"product_reference": "xen-tools-domU-4.17.2_04-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.17.2_04-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.x86_64"
},
"product_reference": "xen-tools-domU-4.17.2_04-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-20588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-20588"
}
],
"notes": [
{
"category": "general",
"text": "\nA division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. \n\n\n\n\n\n\n\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-20588",
"url": "https://www.suse.com/security/cve/CVE-2023-20588"
},
{
"category": "external",
"summary": "SUSE Bug 1213927 for CVE-2023-20588",
"url": "https://bugzilla.suse.com/1213927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-20588"
},
{
"cve": "CVE-2023-34322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-34322"
}
],
"notes": [
{
"category": "general",
"text": "For migration as well as to work around kernels unaware of L1TF (see\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\ndirectly the respective shadow page tables. For 64-bit PV guests this\nmeans running on the shadow of the guest root page table.\n\nIn the course of dealing with shortage of memory in the shadow pool\nassociated with a domain, shadows of page tables may be torn down. This\ntearing down may include the shadow root page table that the CPU in\nquestion is presently running on. While a precaution exists to\nsupposedly prevent the tearing down of the underlying live page table,\nthe time window covered by that precaution isn\u0027t large enough.\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-34322",
"url": "https://www.suse.com/security/cve/CVE-2023-34322"
},
{
"category": "external",
"summary": "SUSE Bug 1215145 for CVE-2023-34322",
"url": "https://bugzilla.suse.com/1215145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.17.2_04-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.2_04-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2023-34322"
}
]
}
SUSE-SU-2023:3831-1
Vulnerability from csaf_suse - Published: 2023-09-27 17:15 - Updated: 2023-09-27 17:15Summary
Security update for xen
Severity
Important
Notes
Title of the patch: Security update for xen
Description of the patch: This update for xen fixes the following issues:
- CVE-2023-20588: Fixed AMD CPU transitional execution leak via division by zero (XSA-439) (bsc#1215474).
- CVE-2023-34322: Fixed top-level shadow reference dropped too early for 64-bit PV guests (XSA-438) (bsc#1215145).
Patchnames: SUSE-2023-3831,SUSE-SLE-Module-Basesystem-15-SP5-2023-3831,SUSE-SLE-Module-Server-Applications-15-SP5-2023-3831,openSUSE-SLE-15.5-2023-3831
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6 (Medium)
Affected products
Recommended
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-libs-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-devel-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-libs-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-devel-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
12 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2023-20588: Fixed AMD CPU transitional execution leak via division by zero (XSA-439) (bsc#1215474).\n- CVE-2023-34322: Fixed top-level shadow reference dropped too early for 64-bit PV guests (XSA-438) (bsc#1215145).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2023-3831,SUSE-SLE-Module-Basesystem-15-SP5-2023-3831,SUSE-SLE-Module-Server-Applications-15-SP5-2023-3831,openSUSE-SLE-15.5-2023-3831",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_3831-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2023:3831-1",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20233831-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2023:3831-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2023-September/031734.html"
},
{
"category": "self",
"summary": "SUSE Bug 1215145",
"url": "https://bugzilla.suse.com/1215145"
},
{
"category": "self",
"summary": "SUSE Bug 1215474",
"url": "https://bugzilla.suse.com/1215474"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-20588 page",
"url": "https://www.suse.com/security/cve/CVE-2023-20588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-34322 page",
"url": "https://www.suse.com/security/cve/CVE-2023-34322/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2023-09-27T17:15:27Z",
"generator": {
"date": "2023-09-27T17:15:27Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2023:3831-1",
"initial_release_date": "2023-09-27T17:15:27Z",
"revision_history": [
{
"date": "2023-09-27T17:15:27Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.17.2_04-150500.3.9.1.aarch64",
"product": {
"name": "xen-4.17.2_04-150500.3.9.1.aarch64",
"product_id": "xen-4.17.2_04-150500.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.17.2_04-150500.3.9.1.aarch64",
"product": {
"name": "xen-devel-4.17.2_04-150500.3.9.1.aarch64",
"product_id": "xen-devel-4.17.2_04-150500.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.17.2_04-150500.3.9.1.aarch64",
"product": {
"name": "xen-doc-html-4.17.2_04-150500.3.9.1.aarch64",
"product_id": "xen-doc-html-4.17.2_04-150500.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.17.2_04-150500.3.9.1.aarch64",
"product": {
"name": "xen-libs-4.17.2_04-150500.3.9.1.aarch64",
"product_id": "xen-libs-4.17.2_04-150500.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.17.2_04-150500.3.9.1.aarch64",
"product": {
"name": "xen-tools-4.17.2_04-150500.3.9.1.aarch64",
"product_id": "xen-tools-4.17.2_04-150500.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64",
"product": {
"name": "xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64",
"product_id": "xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.17.2_04-150500.3.9.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.17.2_04-150500.3.9.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.17.2_04-150500.3.9.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.17.2_04-150500.3.9.1.i586",
"product": {
"name": "xen-devel-4.17.2_04-150500.3.9.1.i586",
"product_id": "xen-devel-4.17.2_04-150500.3.9.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.17.2_04-150500.3.9.1.i586",
"product": {
"name": "xen-libs-4.17.2_04-150500.3.9.1.i586",
"product_id": "xen-libs-4.17.2_04-150500.3.9.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.17.2_04-150500.3.9.1.i586",
"product": {
"name": "xen-tools-domU-4.17.2_04-150500.3.9.1.i586",
"product_id": "xen-tools-domU-4.17.2_04-150500.3.9.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch",
"product_id": "xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.17.2_04-150500.3.9.1.x86_64",
"product": {
"name": "xen-4.17.2_04-150500.3.9.1.x86_64",
"product_id": "xen-4.17.2_04-150500.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"product": {
"name": "xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"product_id": "xen-devel-4.17.2_04-150500.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.17.2_04-150500.3.9.1.x86_64",
"product": {
"name": "xen-doc-html-4.17.2_04-150500.3.9.1.x86_64",
"product_id": "xen-doc-html-4.17.2_04-150500.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"product": {
"name": "xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"product_id": "xen-libs-4.17.2_04-150500.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64",
"product_id": "xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"product": {
"name": "xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"product_id": "xen-tools-4.17.2_04-150500.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"product": {
"name": "xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"product_id": "xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.17.2_04-150500.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-libs-4.17.2_04-150500.3.9.1.x86_64"
},
"product_reference": "xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64"
},
"product_reference": "xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.17.2_04-150500.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-4.17.2_04-150500.3.9.1.x86_64"
},
"product_reference": "xen-4.17.2_04-150500.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.17.2_04-150500.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-devel-4.17.2_04-150500.3.9.1.x86_64"
},
"product_reference": "xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.17.2_04-150500.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-4.17.2_04-150500.3.9.1.x86_64"
},
"product_reference": "xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.17.2_04-150500.3.9.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.aarch64"
},
"product_reference": "xen-4.17.2_04-150500.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.17.2_04-150500.3.9.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.x86_64"
},
"product_reference": "xen-4.17.2_04-150500.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.17.2_04-150500.3.9.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.aarch64"
},
"product_reference": "xen-devel-4.17.2_04-150500.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.17.2_04-150500.3.9.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.x86_64"
},
"product_reference": "xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.17.2_04-150500.3.9.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.aarch64"
},
"product_reference": "xen-doc-html-4.17.2_04-150500.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.17.2_04-150500.3.9.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.x86_64"
},
"product_reference": "xen-doc-html-4.17.2_04-150500.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.17.2_04-150500.3.9.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.aarch64"
},
"product_reference": "xen-libs-4.17.2_04-150500.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.17.2_04-150500.3.9.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.x86_64"
},
"product_reference": "xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.17.2_04-150500.3.9.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.aarch64"
},
"product_reference": "xen-tools-4.17.2_04-150500.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.17.2_04-150500.3.9.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.x86_64"
},
"product_reference": "xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64"
},
"product_reference": "xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64"
},
"product_reference": "xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-20588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-20588"
}
],
"notes": [
{
"category": "general",
"text": "\nA division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. \n\n\n\n\n\n\n\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch",
"openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-20588",
"url": "https://www.suse.com/security/cve/CVE-2023-20588"
},
{
"category": "external",
"summary": "SUSE Bug 1213927 for CVE-2023-20588",
"url": "https://bugzilla.suse.com/1213927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch",
"openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch",
"openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-27T17:15:27Z",
"details": "moderate"
}
],
"title": "CVE-2023-20588"
},
{
"cve": "CVE-2023-34322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-34322"
}
],
"notes": [
{
"category": "general",
"text": "For migration as well as to work around kernels unaware of L1TF (see\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\ndirectly the respective shadow page tables. For 64-bit PV guests this\nmeans running on the shadow of the guest root page table.\n\nIn the course of dealing with shortage of memory in the shadow pool\nassociated with a domain, shadows of page tables may be torn down. This\ntearing down may include the shadow root page table that the CPU in\nquestion is presently running on. While a precaution exists to\nsupposedly prevent the tearing down of the underlying live page table,\nthe time window covered by that precaution isn\u0027t large enough.\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch",
"openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-34322",
"url": "https://www.suse.com/security/cve/CVE-2023-34322"
},
{
"category": "external",
"summary": "SUSE Bug 1215145 for CVE-2023-34322",
"url": "https://bugzilla.suse.com/1215145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch",
"openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch",
"openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-devel-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-doc-html-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-libs-32bit-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-libs-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-tools-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:xen-tools-domU-4.17.2_04-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:xen-tools-xendomains-wait-disk-4.17.2_04-150500.3.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-27T17:15:27Z",
"details": "important"
}
],
"title": "CVE-2023-34322"
}
]
}
SUSE-SU-2023:3832-1
Vulnerability from csaf_suse - Published: 2023-09-27 17:16 - Updated: 2023-09-27 17:16Summary
Security update for xen
Severity
Important
Notes
Title of the patch: Security update for xen
Description of the patch: This update for xen fixes the following issues:
- CVE-2023-20588: Fixed AMD CPU transitional execution leak via division by zero (XSA-439) (bsc#1215474).
- CVE-2023-34322: Fixed top-level shadow reference dropped too early for 64-bit PV guests (XSA-438) (bsc#1215145).
Patchnames: SUSE-2023-3832,SUSE-SLE-Micro-5.3-2023-3832,SUSE-SLE-Micro-5.4-2023-3832,SUSE-SLE-Module-Basesystem-15-SP4-2023-3832,SUSE-SLE-Module-Server-Applications-15-SP4-2023-3832,openSUSE-SLE-15.4-2023-3832
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6 (Medium)
Affected products
Recommended
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-libs-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-devel-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-libs-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-devel-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
12 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2023-20588: Fixed AMD CPU transitional execution leak via division by zero (XSA-439) (bsc#1215474).\n- CVE-2023-34322: Fixed top-level shadow reference dropped too early for 64-bit PV guests (XSA-438) (bsc#1215145).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2023-3832,SUSE-SLE-Micro-5.3-2023-3832,SUSE-SLE-Micro-5.4-2023-3832,SUSE-SLE-Module-Basesystem-15-SP4-2023-3832,SUSE-SLE-Module-Server-Applications-15-SP4-2023-3832,openSUSE-SLE-15.4-2023-3832",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_3832-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2023:3832-1",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20233832-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2023:3832-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2023-September/031733.html"
},
{
"category": "self",
"summary": "SUSE Bug 1215145",
"url": "https://bugzilla.suse.com/1215145"
},
{
"category": "self",
"summary": "SUSE Bug 1215474",
"url": "https://bugzilla.suse.com/1215474"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-20588 page",
"url": "https://www.suse.com/security/cve/CVE-2023-20588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-34322 page",
"url": "https://www.suse.com/security/cve/CVE-2023-34322/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2023-09-27T17:16:03Z",
"generator": {
"date": "2023-09-27T17:16:03Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2023:3832-1",
"initial_release_date": "2023-09-27T17:16:03Z",
"revision_history": [
{
"date": "2023-09-27T17:16:03Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.16.5_04-150400.4.34.1.aarch64",
"product": {
"name": "xen-4.16.5_04-150400.4.34.1.aarch64",
"product_id": "xen-4.16.5_04-150400.4.34.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.16.5_04-150400.4.34.1.aarch64",
"product": {
"name": "xen-devel-4.16.5_04-150400.4.34.1.aarch64",
"product_id": "xen-devel-4.16.5_04-150400.4.34.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.16.5_04-150400.4.34.1.aarch64",
"product": {
"name": "xen-doc-html-4.16.5_04-150400.4.34.1.aarch64",
"product_id": "xen-doc-html-4.16.5_04-150400.4.34.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.16.5_04-150400.4.34.1.aarch64",
"product": {
"name": "xen-libs-4.16.5_04-150400.4.34.1.aarch64",
"product_id": "xen-libs-4.16.5_04-150400.4.34.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.16.5_04-150400.4.34.1.aarch64",
"product": {
"name": "xen-tools-4.16.5_04-150400.4.34.1.aarch64",
"product_id": "xen-tools-4.16.5_04-150400.4.34.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64",
"product": {
"name": "xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64",
"product_id": "xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.16.5_04-150400.4.34.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.16.5_04-150400.4.34.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.16.5_04-150400.4.34.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.16.5_04-150400.4.34.1.i586",
"product": {
"name": "xen-devel-4.16.5_04-150400.4.34.1.i586",
"product_id": "xen-devel-4.16.5_04-150400.4.34.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.16.5_04-150400.4.34.1.i586",
"product": {
"name": "xen-libs-4.16.5_04-150400.4.34.1.i586",
"product_id": "xen-libs-4.16.5_04-150400.4.34.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.16.5_04-150400.4.34.1.i586",
"product": {
"name": "xen-tools-domU-4.16.5_04-150400.4.34.1.i586",
"product_id": "xen-tools-domU-4.16.5_04-150400.4.34.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch",
"product_id": "xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.16.5_04-150400.4.34.1.x86_64",
"product": {
"name": "xen-4.16.5_04-150400.4.34.1.x86_64",
"product_id": "xen-4.16.5_04-150400.4.34.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"product": {
"name": "xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"product_id": "xen-devel-4.16.5_04-150400.4.34.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.16.5_04-150400.4.34.1.x86_64",
"product": {
"name": "xen-doc-html-4.16.5_04-150400.4.34.1.x86_64",
"product_id": "xen-doc-html-4.16.5_04-150400.4.34.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"product": {
"name": "xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"product_id": "xen-libs-4.16.5_04-150400.4.34.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64",
"product_id": "xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"product": {
"name": "xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"product_id": "xen-tools-4.16.5_04-150400.4.34.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"product": {
"name": "xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"product_id": "xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp4"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.4",
"product": {
"name": "openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.16.5_04-150400.4.34.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.16.5_04-150400.4.34.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.16.5_04-150400.4.34.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-libs-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.16.5_04-150400.4.34.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.16.5_04-150400.4.34.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-devel-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.16.5_04-150400.4.34.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.16.5_04-150400.4.34.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.aarch64"
},
"product_reference": "xen-4.16.5_04-150400.4.34.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.16.5_04-150400.4.34.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.16.5_04-150400.4.34.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.aarch64"
},
"product_reference": "xen-devel-4.16.5_04-150400.4.34.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.16.5_04-150400.4.34.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.16.5_04-150400.4.34.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.aarch64"
},
"product_reference": "xen-doc-html-4.16.5_04-150400.4.34.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.16.5_04-150400.4.34.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-doc-html-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.16.5_04-150400.4.34.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.aarch64"
},
"product_reference": "xen-libs-4.16.5_04-150400.4.34.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.16.5_04-150400.4.34.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.16.5_04-150400.4.34.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.aarch64"
},
"product_reference": "xen-tools-4.16.5_04-150400.4.34.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.16.5_04-150400.4.34.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64"
},
"product_reference": "xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64"
},
"product_reference": "xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-20588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-20588"
}
],
"notes": [
{
"category": "general",
"text": "\nA division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. \n\n\n\n\n\n\n\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch",
"openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-20588",
"url": "https://www.suse.com/security/cve/CVE-2023-20588"
},
{
"category": "external",
"summary": "SUSE Bug 1213927 for CVE-2023-20588",
"url": "https://bugzilla.suse.com/1213927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch",
"openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch",
"openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-27T17:16:03Z",
"details": "moderate"
}
],
"title": "CVE-2023-20588"
},
{
"cve": "CVE-2023-34322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-34322"
}
],
"notes": [
{
"category": "general",
"text": "For migration as well as to work around kernels unaware of L1TF (see\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\ndirectly the respective shadow page tables. For 64-bit PV guests this\nmeans running on the shadow of the guest root page table.\n\nIn the course of dealing with shortage of memory in the shadow pool\nassociated with a domain, shadows of page tables may be torn down. This\ntearing down may include the shadow root page table that the CPU in\nquestion is presently running on. While a precaution exists to\nsupposedly prevent the tearing down of the underlying live page table,\nthe time window covered by that precaution isn\u0027t large enough.\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch",
"openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-34322",
"url": "https://www.suse.com/security/cve/CVE-2023-34322"
},
{
"category": "external",
"summary": "SUSE Bug 1215145 for CVE-2023-34322",
"url": "https://bugzilla.suse.com/1215145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch",
"openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch",
"openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-devel-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-doc-html-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-libs-32bit-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-libs-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-tools-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.aarch64",
"openSUSE Leap 15.4:xen-tools-domU-4.16.5_04-150400.4.34.1.x86_64",
"openSUSE Leap 15.4:xen-tools-xendomains-wait-disk-4.16.5_04-150400.4.34.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-27T17:16:03Z",
"details": "important"
}
],
"title": "CVE-2023-34322"
}
]
}
SUSE-SU-2023:3894-1
Vulnerability from csaf_suse - Published: 2023-09-29 08:36 - Updated: 2023-09-29 08:36Summary
Security update for xen
Severity
Important
Notes
Title of the patch: Security update for xen
Description of the patch: This update for xen fixes the following issues:
- CVE-2023-20588: Fixed AMD CPU transitional execution leak via division by zero (XSA-439) (bsc#1215474).
- CVE-2023-34322: Fixed top-level shadow reference dropped too early for 64-bit PV guests (XSA-438) (bsc#1215145).
- CVE-2023-20593: Fixed AMD Zenbleed (XSA-433) (bsc#1213616).
- CVE-2022-40982: Fixed Intel Gather Data Sampling (XSA-435) (bsc#1214083).
Patchnames: SUSE-2023-3894,SUSE-SLE-SDK-12-SP5-2023-3894,SUSE-SLE-SERVER-12-SP5-2023-3894
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.2 (Medium)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6 (Medium)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.2 (Medium)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
23 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2023-20588: Fixed AMD CPU transitional execution leak via division by zero (XSA-439) (bsc#1215474).\n- CVE-2023-34322: Fixed top-level shadow reference dropped too early for 64-bit PV guests (XSA-438) (bsc#1215145).\n- CVE-2023-20593: Fixed AMD Zenbleed (XSA-433) (bsc#1213616).\n- CVE-2022-40982: Fixed Intel Gather Data Sampling (XSA-435) (bsc#1214083).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2023-3894,SUSE-SLE-SDK-12-SP5-2023-3894,SUSE-SLE-SERVER-12-SP5-2023-3894",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_3894-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2023:3894-1",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20233894-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2023:3894-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2023-September/031858.html"
},
{
"category": "self",
"summary": "SUSE Bug 1213616",
"url": "https://bugzilla.suse.com/1213616"
},
{
"category": "self",
"summary": "SUSE Bug 1214083",
"url": "https://bugzilla.suse.com/1214083"
},
{
"category": "self",
"summary": "SUSE Bug 1215145",
"url": "https://bugzilla.suse.com/1215145"
},
{
"category": "self",
"summary": "SUSE Bug 1215474",
"url": "https://bugzilla.suse.com/1215474"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-40982 page",
"url": "https://www.suse.com/security/cve/CVE-2022-40982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-20588 page",
"url": "https://www.suse.com/security/cve/CVE-2023-20588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-20593 page",
"url": "https://www.suse.com/security/cve/CVE-2023-20593/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-34322 page",
"url": "https://www.suse.com/security/cve/CVE-2023-34322/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2023-09-29T08:36:25Z",
"generator": {
"date": "2023-09-29T08:36:25Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2023:3894-1",
"initial_release_date": "2023-09-29T08:36:25Z",
"revision_history": [
{
"date": "2023-09-29T08:36:25Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.12.4_38-3.94.1.aarch64",
"product": {
"name": "xen-4.12.4_38-3.94.1.aarch64",
"product_id": "xen-4.12.4_38-3.94.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.12.4_38-3.94.1.aarch64",
"product": {
"name": "xen-devel-4.12.4_38-3.94.1.aarch64",
"product_id": "xen-devel-4.12.4_38-3.94.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.12.4_38-3.94.1.aarch64",
"product": {
"name": "xen-doc-html-4.12.4_38-3.94.1.aarch64",
"product_id": "xen-doc-html-4.12.4_38-3.94.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.12.4_38-3.94.1.aarch64",
"product": {
"name": "xen-libs-4.12.4_38-3.94.1.aarch64",
"product_id": "xen-libs-4.12.4_38-3.94.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.12.4_38-3.94.1.aarch64",
"product": {
"name": "xen-tools-4.12.4_38-3.94.1.aarch64",
"product_id": "xen-tools-4.12.4_38-3.94.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.12.4_38-3.94.1.aarch64",
"product": {
"name": "xen-tools-domU-4.12.4_38-3.94.1.aarch64",
"product_id": "xen-tools-domU-4.12.4_38-3.94.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.12.4_38-3.94.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.12.4_38-3.94.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.12.4_38-3.94.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.12.4_38-3.94.1.i586",
"product": {
"name": "xen-devel-4.12.4_38-3.94.1.i586",
"product_id": "xen-devel-4.12.4_38-3.94.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.12.4_38-3.94.1.i586",
"product": {
"name": "xen-libs-4.12.4_38-3.94.1.i586",
"product_id": "xen-libs-4.12.4_38-3.94.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.12.4_38-3.94.1.i586",
"product": {
"name": "xen-tools-domU-4.12.4_38-3.94.1.i586",
"product_id": "xen-tools-domU-4.12.4_38-3.94.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.12.4_38-3.94.1.x86_64",
"product": {
"name": "xen-4.12.4_38-3.94.1.x86_64",
"product_id": "xen-4.12.4_38-3.94.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.12.4_38-3.94.1.x86_64",
"product": {
"name": "xen-devel-4.12.4_38-3.94.1.x86_64",
"product_id": "xen-devel-4.12.4_38-3.94.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.12.4_38-3.94.1.x86_64",
"product": {
"name": "xen-doc-html-4.12.4_38-3.94.1.x86_64",
"product_id": "xen-doc-html-4.12.4_38-3.94.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.12.4_38-3.94.1.x86_64",
"product": {
"name": "xen-libs-4.12.4_38-3.94.1.x86_64",
"product_id": "xen-libs-4.12.4_38-3.94.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"product_id": "xen-libs-32bit-4.12.4_38-3.94.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.12.4_38-3.94.1.x86_64",
"product": {
"name": "xen-tools-4.12.4_38-3.94.1.x86_64",
"product_id": "xen-tools-4.12.4_38-3.94.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"product": {
"name": "xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"product_id": "xen-tools-domU-4.12.4_38-3.94.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.12.4_38-3.94.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64"
},
"product_reference": "xen-devel-4.12.4_38-3.94.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-devel-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-doc-html-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-libs-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-tools-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-doc-html-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-libs-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-tools-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.12.4_38-3.94.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64"
},
"product_reference": "xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-40982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-40982"
}
],
"notes": [
{
"category": "general",
"text": "Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-40982",
"url": "https://www.suse.com/security/cve/CVE-2022-40982"
},
{
"category": "external",
"summary": "SUSE Bug 1206418 for CVE-2022-40982",
"url": "https://bugzilla.suse.com/1206418"
},
{
"category": "external",
"summary": "SUSE Bug 1215674 for CVE-2022-40982",
"url": "https://bugzilla.suse.com/1215674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-29T08:36:25Z",
"details": "moderate"
}
],
"title": "CVE-2022-40982"
},
{
"cve": "CVE-2023-20588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-20588"
}
],
"notes": [
{
"category": "general",
"text": "\nA division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. \n\n\n\n\n\n\n\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-20588",
"url": "https://www.suse.com/security/cve/CVE-2023-20588"
},
{
"category": "external",
"summary": "SUSE Bug 1213927 for CVE-2023-20588",
"url": "https://bugzilla.suse.com/1213927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-29T08:36:25Z",
"details": "moderate"
}
],
"title": "CVE-2023-20588"
},
{
"cve": "CVE-2023-20593",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-20593"
}
],
"notes": [
{
"category": "general",
"text": "An issue in \"Zen 2\" CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-20593",
"url": "https://www.suse.com/security/cve/CVE-2023-20593"
},
{
"category": "external",
"summary": "SUSE Bug 1213286 for CVE-2023-20593",
"url": "https://bugzilla.suse.com/1213286"
},
{
"category": "external",
"summary": "SUSE Bug 1213616 for CVE-2023-20593",
"url": "https://bugzilla.suse.com/1213616"
},
{
"category": "external",
"summary": "SUSE Bug 1215674 for CVE-2023-20593",
"url": "https://bugzilla.suse.com/1215674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-29T08:36:25Z",
"details": "moderate"
}
],
"title": "CVE-2023-20593"
},
{
"cve": "CVE-2023-34322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-34322"
}
],
"notes": [
{
"category": "general",
"text": "For migration as well as to work around kernels unaware of L1TF (see\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\ndirectly the respective shadow page tables. For 64-bit PV guests this\nmeans running on the shadow of the guest root page table.\n\nIn the course of dealing with shortage of memory in the shadow pool\nassociated with a domain, shadows of page tables may be torn down. This\ntearing down may include the shadow root page table that the CPU in\nquestion is presently running on. While a precaution exists to\nsupposedly prevent the tearing down of the underlying live page table,\nthe time window covered by that precaution isn\u0027t large enough.\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-34322",
"url": "https://www.suse.com/security/cve/CVE-2023-34322"
},
{
"category": "external",
"summary": "SUSE Bug 1215145 for CVE-2023-34322",
"url": "https://bugzilla.suse.com/1215145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-doc-html-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-32bit-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-libs-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:xen-tools-domU-4.12.4_38-3.94.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:xen-devel-4.12.4_38-3.94.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-29T08:36:25Z",
"details": "important"
}
],
"title": "CVE-2023-34322"
}
]
}
SUSE-SU-2023:3895-1
Vulnerability from csaf_suse - Published: 2023-09-29 08:59 - Updated: 2023-09-29 08:59Summary
Security update for xen
Severity
Important
Notes
Title of the patch: Security update for xen
Description of the patch: This update for xen fixes the following issues:
- CVE-2023-20588: Fixed AMD CPU transitional execution leak via division by zero (XSA-439) (bsc#1215474).
- CVE-2023-34322: Fixed top-level shadow reference dropped too early for 64-bit PV guests (XSA-438) (bsc#1215145).
- CVE-2023-20593: Fixed AMD Zenbleed (XSA-433) (bsc#1213616).
- CVE-2022-40982: Fixed Intel Gather Data Sampling (XSA-435) (bsc#1214083).
Patchnames: SUSE-2023-3895,SUSE-SLE-Product-HPC-15-SP2-LTSS-2023-3895,SUSE-SLE-Product-SLES-15-SP2-LTSS-2023-3895,SUSE-SLE-Product-SLES_SAP-15-SP2-2023-3895
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.2 (Medium)
Affected products
Recommended
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
6 (Medium)
Affected products
Recommended
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
6.2 (Medium)
Affected products
Recommended
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
23 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2023-20588: Fixed AMD CPU transitional execution leak via division by zero (XSA-439) (bsc#1215474).\n- CVE-2023-34322: Fixed top-level shadow reference dropped too early for 64-bit PV guests (XSA-438) (bsc#1215145).\n- CVE-2023-20593: Fixed AMD Zenbleed (XSA-433) (bsc#1213616).\n- CVE-2022-40982: Fixed Intel Gather Data Sampling (XSA-435) (bsc#1214083).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2023-3895,SUSE-SLE-Product-HPC-15-SP2-LTSS-2023-3895,SUSE-SLE-Product-SLES-15-SP2-LTSS-2023-3895,SUSE-SLE-Product-SLES_SAP-15-SP2-2023-3895",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_3895-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2023:3895-1",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20233895-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2023:3895-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-September/016463.html"
},
{
"category": "self",
"summary": "SUSE Bug 1213616",
"url": "https://bugzilla.suse.com/1213616"
},
{
"category": "self",
"summary": "SUSE Bug 1214083",
"url": "https://bugzilla.suse.com/1214083"
},
{
"category": "self",
"summary": "SUSE Bug 1215145",
"url": "https://bugzilla.suse.com/1215145"
},
{
"category": "self",
"summary": "SUSE Bug 1215474",
"url": "https://bugzilla.suse.com/1215474"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-40982 page",
"url": "https://www.suse.com/security/cve/CVE-2022-40982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-20588 page",
"url": "https://www.suse.com/security/cve/CVE-2023-20588/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-20593 page",
"url": "https://www.suse.com/security/cve/CVE-2023-20593/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-34322 page",
"url": "https://www.suse.com/security/cve/CVE-2023-34322/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2023-09-29T08:59:54Z",
"generator": {
"date": "2023-09-29T08:59:54Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2023:3895-1",
"initial_release_date": "2023-09-29T08:59:54Z",
"revision_history": [
{
"date": "2023-09-29T08:59:54Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.13.5_04-150200.3.77.1.aarch64",
"product": {
"name": "xen-4.13.5_04-150200.3.77.1.aarch64",
"product_id": "xen-4.13.5_04-150200.3.77.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.13.5_04-150200.3.77.1.aarch64",
"product": {
"name": "xen-devel-4.13.5_04-150200.3.77.1.aarch64",
"product_id": "xen-devel-4.13.5_04-150200.3.77.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.13.5_04-150200.3.77.1.aarch64",
"product": {
"name": "xen-doc-html-4.13.5_04-150200.3.77.1.aarch64",
"product_id": "xen-doc-html-4.13.5_04-150200.3.77.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.13.5_04-150200.3.77.1.aarch64",
"product": {
"name": "xen-libs-4.13.5_04-150200.3.77.1.aarch64",
"product_id": "xen-libs-4.13.5_04-150200.3.77.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.13.5_04-150200.3.77.1.aarch64",
"product": {
"name": "xen-tools-4.13.5_04-150200.3.77.1.aarch64",
"product_id": "xen-tools-4.13.5_04-150200.3.77.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.13.5_04-150200.3.77.1.aarch64",
"product": {
"name": "xen-tools-domU-4.13.5_04-150200.3.77.1.aarch64",
"product_id": "xen-tools-domU-4.13.5_04-150200.3.77.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.13.5_04-150200.3.77.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.13.5_04-150200.3.77.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.13.5_04-150200.3.77.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.13.5_04-150200.3.77.1.i586",
"product": {
"name": "xen-devel-4.13.5_04-150200.3.77.1.i586",
"product_id": "xen-devel-4.13.5_04-150200.3.77.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.13.5_04-150200.3.77.1.i586",
"product": {
"name": "xen-libs-4.13.5_04-150200.3.77.1.i586",
"product_id": "xen-libs-4.13.5_04-150200.3.77.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.13.5_04-150200.3.77.1.i586",
"product": {
"name": "xen-tools-domU-4.13.5_04-150200.3.77.1.i586",
"product_id": "xen-tools-domU-4.13.5_04-150200.3.77.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"product_id": "xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.13.5_04-150200.3.77.1.x86_64",
"product": {
"name": "xen-4.13.5_04-150200.3.77.1.x86_64",
"product_id": "xen-4.13.5_04-150200.3.77.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"product": {
"name": "xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"product_id": "xen-devel-4.13.5_04-150200.3.77.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.13.5_04-150200.3.77.1.x86_64",
"product": {
"name": "xen-doc-html-4.13.5_04-150200.3.77.1.x86_64",
"product_id": "xen-doc-html-4.13.5_04-150200.3.77.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"product": {
"name": "xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"product_id": "xen-libs-4.13.5_04-150200.3.77.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.13.5_04-150200.3.77.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.13.5_04-150200.3.77.1.x86_64",
"product_id": "xen-libs-32bit-4.13.5_04-150200.3.77.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"product": {
"name": "xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"product_id": "xen-tools-4.13.5_04-150200.3.77.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"product": {
"name": "xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"product_id": "xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64"
},
"product_reference": "xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-40982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-40982"
}
],
"notes": [
{
"category": "general",
"text": "Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-40982",
"url": "https://www.suse.com/security/cve/CVE-2022-40982"
},
{
"category": "external",
"summary": "SUSE Bug 1206418 for CVE-2022-40982",
"url": "https://bugzilla.suse.com/1206418"
},
{
"category": "external",
"summary": "SUSE Bug 1215674 for CVE-2022-40982",
"url": "https://bugzilla.suse.com/1215674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-29T08:59:54Z",
"details": "moderate"
}
],
"title": "CVE-2022-40982"
},
{
"cve": "CVE-2023-20588",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-20588"
}
],
"notes": [
{
"category": "general",
"text": "\nA division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. \n\n\n\n\n\n\n\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-20588",
"url": "https://www.suse.com/security/cve/CVE-2023-20588"
},
{
"category": "external",
"summary": "SUSE Bug 1213927 for CVE-2023-20588",
"url": "https://bugzilla.suse.com/1213927"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-29T08:59:54Z",
"details": "moderate"
}
],
"title": "CVE-2023-20588"
},
{
"cve": "CVE-2023-20593",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-20593"
}
],
"notes": [
{
"category": "general",
"text": "An issue in \"Zen 2\" CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-20593",
"url": "https://www.suse.com/security/cve/CVE-2023-20593"
},
{
"category": "external",
"summary": "SUSE Bug 1213286 for CVE-2023-20593",
"url": "https://bugzilla.suse.com/1213286"
},
{
"category": "external",
"summary": "SUSE Bug 1213616 for CVE-2023-20593",
"url": "https://bugzilla.suse.com/1213616"
},
{
"category": "external",
"summary": "SUSE Bug 1215674 for CVE-2023-20593",
"url": "https://bugzilla.suse.com/1215674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-29T08:59:54Z",
"details": "moderate"
}
],
"title": "CVE-2023-20593"
},
{
"cve": "CVE-2023-34322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-34322"
}
],
"notes": [
{
"category": "general",
"text": "For migration as well as to work around kernels unaware of L1TF (see\nXSA-273), PV guests may be run in shadow paging mode. Since Xen itself\nneeds to be mapped when PV guests run, Xen and shadowed PV guests run\ndirectly the respective shadow page tables. For 64-bit PV guests this\nmeans running on the shadow of the guest root page table.\n\nIn the course of dealing with shortage of memory in the shadow pool\nassociated with a domain, shadows of page tables may be torn down. This\ntearing down may include the shadow root page table that the CPU in\nquestion is presently running on. While a precaution exists to\nsupposedly prevent the tearing down of the underlying live page table,\nthe time window covered by that precaution isn\u0027t large enough.\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-34322",
"url": "https://www.suse.com/security/cve/CVE-2023-34322"
},
{
"category": "external",
"summary": "SUSE Bug 1215145 for CVE-2023-34322",
"url": "https://bugzilla.suse.com/1215145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_04-150200.3.77.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_04-150200.3.77.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-29T08:59:54Z",
"details": "important"
}
],
"title": "CVE-2023-34322"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…