Vulnerability from csaf_suse
Published
2020-06-16 15:01
Modified
2020-06-16 15:01
Summary
Security update for xen
Notes
Title of the patch
Security update for xen
Description of the patch
This update for xen fixes the following issues:
- CVE-2020-0543: Fixed a side channel attack against special registers which could have resulted in leaking of read values to cores other than the one which called it.
This attack is known as Special Register Buffer Data Sampling (SRBDS) or 'CrossTalk' (bsc#1172205).
- CVE-2020-11742: Bad continuation handling in GNTTABOP_copy (bsc#1169392).
- CVE-2020-11740, CVE-2020-11741: xen: XSA-313 multiple xenoprof issues (bsc#1168140).
- CVE-2020-11739: Missing memory barriers in read-write unlock paths (bsc#1168142).
- CVE-2019-19583: Fixed improper checks which could have allowed HVM/PVH guest userspace code to crash the guest, leading to a guest denial of service (bsc#1158004 XSA-308).
- CVE-2019-19581: Fixed a potential out of bounds on 32-bit Arm (bsc#1158003 XSA-307).
- CVE-2019-19580: Fixed a privilege escalation where a malicious PV guest administrator could have been able to escalate their privilege to that of the host (bsc#1158006 XSA-310).
- CVE-2019-19579: Fixed a privilege escalation where an untrusted domain with access to a physical device can DMA into host memory (bsc#1157888 XSA-306).
- CVE-2019-19578: Fixed an issue where a malicious or buggy PV guest could have caused hypervisor crash resulting in denial of service affecting the entire host (bsc#1158005 XSA-309).
- CVE-2019-19577: Fixed an issue where a malicious guest administrator could have caused Xen to access data structures while they are being modified leading to a crash (bsc#1158007 XSA-311).
- Xenstored Crashed during VM install (bsc#1167152)
Patchnames
HPE-Helion-OpenStack-8-2020-1630,SUSE-2020-1630,SUSE-OpenStack-Cloud-8-2020-1630,SUSE-OpenStack-Cloud-Crowbar-8-2020-1630,SUSE-SLE-SAP-12-SP3-2020-1630,SUSE-SLE-SERVER-12-SP3-2020-1630,SUSE-SLE-SERVER-12-SP3-BCL-2020-1630,SUSE-Storage-5-2020-1630
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for xen", title: "Title of the patch", }, { category: "description", text: "This update for xen fixes the following issues:\n\n- CVE-2020-0543: Fixed a side channel attack against special registers which could have resulted in leaking of read values to cores other than the one which called it.\n This attack is known as Special Register Buffer Data Sampling (SRBDS) or 'CrossTalk' (bsc#1172205).\n- CVE-2020-11742: Bad continuation handling in GNTTABOP_copy (bsc#1169392).\n- CVE-2020-11740, CVE-2020-11741: xen: XSA-313 multiple xenoprof issues (bsc#1168140).\n- CVE-2020-11739: Missing memory barriers in read-write unlock paths (bsc#1168142).\n- CVE-2019-19583: Fixed improper checks which could have allowed HVM/PVH guest userspace code to crash the guest, leading to a guest denial of service (bsc#1158004 XSA-308).\n- CVE-2019-19581: Fixed a potential out of bounds on 32-bit Arm (bsc#1158003 XSA-307).\n- CVE-2019-19580: Fixed a privilege escalation where a malicious PV guest administrator could have been able to escalate their privilege to that of the host (bsc#1158006 XSA-310).\n- CVE-2019-19579: Fixed a privilege escalation where an untrusted domain with access to a physical device can DMA into host memory (bsc#1157888 XSA-306).\n- CVE-2019-19578: Fixed an issue where a malicious or buggy PV guest could have caused hypervisor crash resulting in denial of service affecting the entire host (bsc#1158005 XSA-309).\n- CVE-2019-19577: Fixed an issue where a malicious guest administrator could have caused Xen to access data structures while they are being modified leading to a crash (bsc#1158007 XSA-311). \n- Xenstored Crashed during VM install (bsc#1167152)\n", title: "Description of the patch", }, { category: "details", text: "HPE-Helion-OpenStack-8-2020-1630,SUSE-2020-1630,SUSE-OpenStack-Cloud-8-2020-1630,SUSE-OpenStack-Cloud-Crowbar-8-2020-1630,SUSE-SLE-SAP-12-SP3-2020-1630,SUSE-SLE-SERVER-12-SP3-2020-1630,SUSE-SLE-SERVER-12-SP3-BCL-2020-1630,SUSE-Storage-5-2020-1630", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_1630-1.json", }, { category: "self", summary: "URL for SUSE-SU-2020:1630-1", url: "https://www.suse.com/support/update/announcement/2020/suse-su-20201630-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2020:1630-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2020-June/006956.html", }, { category: "self", summary: "SUSE Bug 1157888", url: "https://bugzilla.suse.com/1157888", }, { category: "self", summary: "SUSE Bug 1158003", url: "https://bugzilla.suse.com/1158003", }, { category: "self", summary: "SUSE Bug 1158004", url: "https://bugzilla.suse.com/1158004", }, { category: "self", summary: "SUSE Bug 1158005", url: "https://bugzilla.suse.com/1158005", }, { category: "self", summary: "SUSE Bug 1158006", url: "https://bugzilla.suse.com/1158006", }, { category: "self", summary: "SUSE Bug 1158007", url: "https://bugzilla.suse.com/1158007", }, { category: "self", summary: "SUSE Bug 1161181", url: "https://bugzilla.suse.com/1161181", }, { category: "self", summary: "SUSE Bug 1167152", url: "https://bugzilla.suse.com/1167152", }, { category: "self", summary: "SUSE Bug 1168140", url: "https://bugzilla.suse.com/1168140", }, { category: "self", summary: "SUSE Bug 1168142", url: "https://bugzilla.suse.com/1168142", }, { category: "self", summary: "SUSE Bug 1169392", url: "https://bugzilla.suse.com/1169392", }, { category: "self", summary: "SUSE Bug 1172205", url: "https://bugzilla.suse.com/1172205", }, { category: "self", summary: "SUSE CVE CVE-2019-19577 page", url: "https://www.suse.com/security/cve/CVE-2019-19577/", }, { category: "self", summary: "SUSE CVE CVE-2019-19578 page", url: "https://www.suse.com/security/cve/CVE-2019-19578/", }, { category: "self", summary: "SUSE CVE CVE-2019-19579 page", url: "https://www.suse.com/security/cve/CVE-2019-19579/", }, { category: "self", summary: "SUSE CVE CVE-2019-19580 page", url: "https://www.suse.com/security/cve/CVE-2019-19580/", }, { category: "self", summary: "SUSE CVE CVE-2019-19581 page", url: "https://www.suse.com/security/cve/CVE-2019-19581/", }, { category: "self", summary: "SUSE CVE CVE-2019-19583 page", url: "https://www.suse.com/security/cve/CVE-2019-19583/", }, { category: "self", summary: "SUSE CVE CVE-2020-0543 page", url: "https://www.suse.com/security/cve/CVE-2020-0543/", }, { category: "self", summary: "SUSE CVE CVE-2020-11739 page", url: "https://www.suse.com/security/cve/CVE-2020-11739/", }, { category: "self", summary: "SUSE CVE CVE-2020-11740 page", url: "https://www.suse.com/security/cve/CVE-2020-11740/", }, { category: "self", summary: "SUSE CVE CVE-2020-11741 page", url: "https://www.suse.com/security/cve/CVE-2020-11741/", }, { category: "self", summary: "SUSE CVE CVE-2020-11742 page", url: "https://www.suse.com/security/cve/CVE-2020-11742/", }, { category: "self", summary: "SUSE CVE CVE-2020-7211 page", url: "https://www.suse.com/security/cve/CVE-2020-7211/", }, ], title: "Security update for xen", tracking: { current_release_date: "2020-06-16T15:01:26Z", generator: { date: "2020-06-16T15:01:26Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2020:1630-1", initial_release_date: "2020-06-16T15:01:26Z", revision_history: [ { date: "2020-06-16T15:01:26Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "xen-4.9.4_06-3.62.1.aarch64", product: { name: "xen-4.9.4_06-3.62.1.aarch64", product_id: "xen-4.9.4_06-3.62.1.aarch64", }, }, { category: "product_version", name: "xen-devel-4.9.4_06-3.62.1.aarch64", product: { name: "xen-devel-4.9.4_06-3.62.1.aarch64", product_id: "xen-devel-4.9.4_06-3.62.1.aarch64", }, }, { category: "product_version", name: "xen-doc-html-4.9.4_06-3.62.1.aarch64", product: { name: "xen-doc-html-4.9.4_06-3.62.1.aarch64", product_id: "xen-doc-html-4.9.4_06-3.62.1.aarch64", }, }, { category: "product_version", name: "xen-libs-4.9.4_06-3.62.1.aarch64", product: { name: "xen-libs-4.9.4_06-3.62.1.aarch64", product_id: "xen-libs-4.9.4_06-3.62.1.aarch64", }, }, { category: "product_version", name: "xen-tools-4.9.4_06-3.62.1.aarch64", product: { name: "xen-tools-4.9.4_06-3.62.1.aarch64", product_id: "xen-tools-4.9.4_06-3.62.1.aarch64", }, }, { category: "product_version", name: "xen-tools-domU-4.9.4_06-3.62.1.aarch64", product: { name: "xen-tools-domU-4.9.4_06-3.62.1.aarch64", product_id: "xen-tools-domU-4.9.4_06-3.62.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "xen-libs-64bit-4.9.4_06-3.62.1.aarch64_ilp32", product: { name: "xen-libs-64bit-4.9.4_06-3.62.1.aarch64_ilp32", product_id: "xen-libs-64bit-4.9.4_06-3.62.1.aarch64_ilp32", }, }, ], category: "architecture", name: "aarch64_ilp32", }, { branches: [ { category: "product_version", name: "xen-devel-4.9.4_06-3.62.1.i586", product: { name: "xen-devel-4.9.4_06-3.62.1.i586", product_id: "xen-devel-4.9.4_06-3.62.1.i586", }, }, { category: "product_version", name: "xen-libs-4.9.4_06-3.62.1.i586", product: { name: "xen-libs-4.9.4_06-3.62.1.i586", product_id: "xen-libs-4.9.4_06-3.62.1.i586", }, }, { category: "product_version", name: "xen-tools-domU-4.9.4_06-3.62.1.i586", product: { name: "xen-tools-domU-4.9.4_06-3.62.1.i586", product_id: "xen-tools-domU-4.9.4_06-3.62.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "xen-4.9.4_06-3.62.1.x86_64", product: { name: "xen-4.9.4_06-3.62.1.x86_64", product_id: "xen-4.9.4_06-3.62.1.x86_64", }, }, { category: "product_version", name: "xen-doc-html-4.9.4_06-3.62.1.x86_64", product: { name: "xen-doc-html-4.9.4_06-3.62.1.x86_64", product_id: "xen-doc-html-4.9.4_06-3.62.1.x86_64", }, }, { category: "product_version", name: "xen-libs-4.9.4_06-3.62.1.x86_64", product: { name: "xen-libs-4.9.4_06-3.62.1.x86_64", product_id: "xen-libs-4.9.4_06-3.62.1.x86_64", }, }, { category: "product_version", name: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64", product: { name: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64", product_id: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64", }, }, { category: "product_version", name: "xen-tools-4.9.4_06-3.62.1.x86_64", product: { name: "xen-tools-4.9.4_06-3.62.1.x86_64", product_id: "xen-tools-4.9.4_06-3.62.1.x86_64", }, }, { category: "product_version", name: "xen-tools-domU-4.9.4_06-3.62.1.x86_64", product: { name: "xen-tools-domU-4.9.4_06-3.62.1.x86_64", product_id: "xen-tools-domU-4.9.4_06-3.62.1.x86_64", }, }, { category: "product_version", name: "xen-devel-4.9.4_06-3.62.1.x86_64", product: { name: "xen-devel-4.9.4_06-3.62.1.x86_64", product_id: "xen-devel-4.9.4_06-3.62.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "HPE Helion OpenStack 8", product: { name: "HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8", product_identification_helper: { cpe: "cpe:/o:suse:hpe-helion-openstack:8", }, }, }, { category: "product_name", name: "SUSE OpenStack Cloud 8", product: { name: "SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud:8", }, }, }, { category: "product_name", name: "SUSE OpenStack Cloud Crowbar 8", product: { name: "SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud-crowbar:8", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", product: { name: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:12:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 12 SP3-LTSS", product: { name: "SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sles-ltss:12:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 12 SP3-BCL", product: { name: "SUSE Linux Enterprise Server 12 SP3-BCL", product_id: "SUSE Linux Enterprise Server 12 SP3-BCL", product_identification_helper: { cpe: "cpe:/o:suse:sles-bcl:12:sp3", }, }, }, { category: "product_name", name: "SUSE Enterprise Storage 5", product: { name: "SUSE Enterprise Storage 5", product_id: "SUSE Enterprise Storage 5", product_identification_helper: { cpe: "cpe:/o:suse:ses:5", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "xen-4.9.4_06-3.62.1.x86_64 as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "xen-doc-html-4.9.4_06-3.62.1.x86_64 as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-doc-html-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "xen-libs-4.9.4_06-3.62.1.x86_64 as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64 as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "xen-tools-4.9.4_06-3.62.1.x86_64 as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "xen-tools-domU-4.9.4_06-3.62.1.x86_64 as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-domU-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "xen-4.9.4_06-3.62.1.x86_64 as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "xen-doc-html-4.9.4_06-3.62.1.x86_64 as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-doc-html-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "xen-libs-4.9.4_06-3.62.1.x86_64 as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64 as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "xen-tools-4.9.4_06-3.62.1.x86_64 as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "xen-tools-domU-4.9.4_06-3.62.1.x86_64 as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-domU-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "xen-4.9.4_06-3.62.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "xen-doc-html-4.9.4_06-3.62.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-doc-html-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "xen-libs-4.9.4_06-3.62.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "xen-tools-4.9.4_06-3.62.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "xen-tools-domU-4.9.4_06-3.62.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-domU-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "xen-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "xen-doc-html-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-doc-html-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "xen-libs-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "xen-tools-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "xen-tools-domU-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-domU-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "xen-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-LTSS", }, { category: "default_component_of", full_product_name: { name: "xen-doc-html-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-doc-html-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-LTSS", }, { category: "default_component_of", full_product_name: { name: "xen-libs-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-LTSS", }, { category: "default_component_of", full_product_name: { name: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-LTSS", }, { category: "default_component_of", full_product_name: { name: "xen-tools-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-LTSS", }, { category: "default_component_of", full_product_name: { name: "xen-tools-domU-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-domU-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-LTSS", }, { category: "default_component_of", full_product_name: { name: "xen-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL", product_id: "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-BCL", }, { category: "default_component_of", full_product_name: { name: "xen-doc-html-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL", product_id: "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-doc-html-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-BCL", }, { category: "default_component_of", full_product_name: { name: "xen-libs-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL", product_id: "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-BCL", }, { category: "default_component_of", full_product_name: { name: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL", product_id: "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-BCL", }, { category: "default_component_of", full_product_name: { name: "xen-tools-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL", product_id: "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-BCL", }, { category: "default_component_of", full_product_name: { name: "xen-tools-domU-4.9.4_06-3.62.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL", product_id: "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-domU-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-BCL", }, { category: "default_component_of", full_product_name: { name: "xen-4.9.4_06-3.62.1.x86_64 as component of SUSE Enterprise Storage 5", product_id: "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 5", }, { category: "default_component_of", full_product_name: { name: "xen-doc-html-4.9.4_06-3.62.1.x86_64 as component of SUSE Enterprise Storage 5", product_id: "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-doc-html-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 5", }, { category: "default_component_of", full_product_name: { name: "xen-libs-4.9.4_06-3.62.1.x86_64 as component of SUSE Enterprise Storage 5", product_id: "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 5", }, { category: "default_component_of", full_product_name: { name: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64 as component of SUSE Enterprise Storage 5", product_id: "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-libs-32bit-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 5", }, { category: "default_component_of", full_product_name: { name: "xen-tools-4.9.4_06-3.62.1.x86_64 as component of SUSE Enterprise Storage 5", product_id: "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 5", }, { category: "default_component_of", full_product_name: { name: "xen-tools-domU-4.9.4_06-3.62.1.x86_64 as component of SUSE Enterprise Storage 5", product_id: "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", }, product_reference: "xen-tools-domU-4.9.4_06-3.62.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 5", }, ], }, vulnerabilities: [ { cve: "CVE-2019-19577", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-19577", }, ], notes: [ { category: "general", text: "An issue was discovered in Xen through 4.12.x allowing x86 AMD HVM guest OS users to cause a denial of service or possibly gain privileges by triggering data-structure access during pagetable-height updates. When running on AMD systems with an IOMMU, Xen attempted to dynamically adapt the number of levels of pagetables (the pagetable height) in the IOMMU according to the guest's address space size. The code to select and update the height had several bugs. Notably, the update was done without taking a lock which is necessary for safe operation. A malicious guest administrator can cause Xen to access data structures while they are being modified, causing Xen to crash. Privilege escalation is thought to be very difficult but cannot be ruled out. Additionally, there is a potential memory leak of 4kb per guest boot, under memory pressure. Only Xen on AMD CPUs is vulnerable. Xen running on Intel CPUs is not vulnerable. ARM systems are not vulnerable. Only systems where guests are given direct access to physical devices are vulnerable. Systems which do not use PCI pass-through are not vulnerable. Only HVM guests can exploit the vulnerability. PV and PVH guests cannot. All versions of Xen with IOMMU support are vulnerable.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-19577", url: "https://www.suse.com/security/cve/CVE-2019-19577", }, { category: "external", summary: "SUSE Bug 1158007 for CVE-2019-19577", url: "https://bugzilla.suse.com/1158007", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.2, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-06-16T15:01:26Z", details: "important", }, ], title: "CVE-2019-19577", }, { cve: "CVE-2019-19578", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-19578", }, ], notes: [ { category: "general", text: "An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to cause a denial of service via degenerate chains of linear pagetables, because of an incorrect fix for CVE-2017-15595. \"Linear pagetables\" is a technique which involves either pointing a pagetable at itself, or to another pagetable of the same or higher level. Xen has limited support for linear pagetables: A page may either point to itself, or point to another pagetable of the same level (i.e., L2 to L2, L3 to L3, and so on). XSA-240 introduced an additional restriction that limited the \"depth\" of such chains by allowing pages to either *point to* other pages of the same level, or *be pointed to* by other pages of the same level, but not both. To implement this, we keep track of the number of outstanding times a page points to or is pointed to another page table, to prevent both from happening at the same time. Unfortunately, the original commit introducing this reset this count when resuming validation of a partially-validated pagetable, incorrectly dropping some \"linear_pt_entry\" counts. If an attacker could engineer such a situation to occur, they might be able to make loops or other arbitrary chains of linear pagetables, as described in XSA-240. A malicious or buggy PV guest may cause the hypervisor to crash, resulting in Denial of Service (DoS) affecting the entire host. Privilege escalation and information leaks cannot be excluded. All versions of Xen are vulnerable. Only x86 systems are affected. Arm systems are not affected. Only x86 PV guests can leverage the vulnerability. x86 HVM and PVH guests cannot leverage the vulnerability. Only systems which have enabled linear pagetables are vulnerable. Systems which have disabled linear pagetables, either by selecting CONFIG_PV_LINEAR_PT=n when building the hypervisor, or adding pv-linear-pt=false on the command-line, are not vulnerable.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-19578", url: "https://www.suse.com/security/cve/CVE-2019-19578", }, { category: "external", summary: "SUSE Bug 1158005 for CVE-2019-19578", url: "https://bugzilla.suse.com/1158005", }, { category: "external", summary: "SUSE Bug 1178658 for CVE-2019-19578", url: "https://bugzilla.suse.com/1178658", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-06-16T15:01:26Z", details: "important", }, ], title: "CVE-2019-19578", }, { cve: "CVE-2019-19579", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-19579", }, ], notes: [ { category: "general", text: "An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device (and assignable-add is not used), because of an incomplete fix for CVE-2019-18424. XSA-302 relies on the use of libxl's \"assignable-add\" feature to prepare devices to be assigned to untrusted guests. Unfortunately, this is not considered a strictly required step for device assignment. The PCI passthrough documentation on the wiki describes alternate ways of preparing devices for assignment, and libvirt uses its own ways as well. Hosts where these \"alternate\" methods are used will still leave the system in a vulnerable state after the device comes back from a guest. An untrusted domain with access to a physical device can DMA into host memory, leading to privilege escalation. Only systems where guests are given direct access to physical devices capable of DMA (PCI pass-through) are vulnerable. Systems which do not use PCI pass-through are not vulnerable.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-19579", url: "https://www.suse.com/security/cve/CVE-2019-19579", }, { category: "external", summary: "SUSE Bug 1157888 for CVE-2019-19579", url: "https://bugzilla.suse.com/1157888", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-06-16T15:01:26Z", details: "moderate", }, ], title: "CVE-2019-19579", }, { cve: "CVE-2019-19580", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-19580", }, ], notes: [ { category: "general", text: "An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and demotion operations, because of an incomplete fix for CVE-2019-18421. XSA-299 addressed several critical issues in restartable PV type change operations. Despite extensive testing and auditing, some corner cases were missed. A malicious PV guest administrator may be able to escalate their privilege to that of the host. All security-supported versions of Xen are vulnerable. Only x86 systems are affected. Arm systems are not affected. Only x86 PV guests can leverage the vulnerability. x86 HVM and PVH guests cannot leverage the vulnerability. Note that these attacks require very precise timing, which may be difficult to exploit in practice.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-19580", url: "https://www.suse.com/security/cve/CVE-2019-19580", }, { category: "external", summary: "SUSE Bug 1158006 for CVE-2019-19580", url: "https://bugzilla.suse.com/1158006", }, { category: "external", summary: "SUSE Bug 1178658 for CVE-2019-19580", url: "https://bugzilla.suse.com/1178658", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.6, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-06-16T15:01:26Z", details: "moderate", }, ], title: "CVE-2019-19580", }, { cve: "CVE-2019-19581", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-19581", }, ], notes: [ { category: "general", text: "An issue was discovered in Xen through 4.12.x allowing 32-bit Arm guest OS users to cause a denial of service (out-of-bounds access) because certain bit iteration is mishandled. In a number of places bitmaps are being used by the hypervisor to track certain state. Iteration over all bits involves functions which may misbehave in certain corner cases: On 32-bit Arm accesses to bitmaps with bit a count which is a multiple of 32, an out of bounds access may occur. A malicious guest may cause a hypervisor crash or hang, resulting in a Denial of Service (DoS). All versions of Xen are vulnerable. 32-bit Arm systems are vulnerable. 64-bit Arm systems are not vulnerable.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-19581", url: "https://www.suse.com/security/cve/CVE-2019-19581", }, { category: "external", summary: "SUSE Bug 1158003 for CVE-2019-19581", url: "https://bugzilla.suse.com/1158003", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-06-16T15:01:26Z", details: "moderate", }, ], title: "CVE-2019-19581", }, { cve: "CVE-2019-19583", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-19583", }, ], notes: [ { category: "general", text: "An issue was discovered in Xen through 4.12.x allowing x86 HVM/PVH guest OS users to cause a denial of service (guest OS crash) because VMX VMEntry checks mishandle a certain case. Please see XSA-260 for background on the MovSS shadow. Please see XSA-156 for background on the need for #DB interception. The VMX VMEntry checks do not like the exact combination of state which occurs when #DB in intercepted, Single Stepping is active, and blocked by STI/MovSS is active, despite this being a legitimate state to be in. The resulting VMEntry failure is fatal to the guest. HVM/PVH guest userspace code may be able to crash the guest, resulting in a guest Denial of Service. All versions of Xen are affected. Only systems supporting VMX hardware virtual extensions (Intel, Cyrix, or Zhaoxin CPUs) are affected. Arm and AMD systems are unaffected. Only HVM/PVH guests are affected. PV guests cannot leverage the vulnerability.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-19583", url: "https://www.suse.com/security/cve/CVE-2019-19583", }, { category: "external", summary: "SUSE Bug 1158004 for CVE-2019-19583", url: "https://bugzilla.suse.com/1158004", }, { category: "external", summary: "SUSE Bug 1178658 for CVE-2019-19583", url: "https://bugzilla.suse.com/1178658", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-06-16T15:01:26Z", details: "important", }, ], title: "CVE-2019-19583", }, { cve: "CVE-2020-0543", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-0543", }, ], notes: [ { category: "general", text: "Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-0543", url: "https://www.suse.com/security/cve/CVE-2020-0543", }, { category: "external", summary: "SUSE Bug 1154824 for CVE-2020-0543", url: "https://bugzilla.suse.com/1154824", }, { category: "external", summary: "SUSE Bug 1172205 for CVE-2020-0543", url: "https://bugzilla.suse.com/1172205", }, { category: "external", summary: "SUSE Bug 1172206 for CVE-2020-0543", url: "https://bugzilla.suse.com/1172206", }, { category: "external", summary: "SUSE Bug 1172207 for CVE-2020-0543", url: "https://bugzilla.suse.com/1172207", }, { category: "external", summary: "SUSE Bug 1172770 for CVE-2020-0543", url: "https://bugzilla.suse.com/1172770", }, { category: "external", summary: "SUSE Bug 1178658 for CVE-2020-0543", url: "https://bugzilla.suse.com/1178658", }, { category: "external", summary: "SUSE Bug 1201877 for CVE-2020-0543", url: "https://bugzilla.suse.com/1201877", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N", version: "3.1", }, products: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-06-16T15:01:26Z", details: "moderate", }, ], title: "CVE-2020-0543", }, { cve: "CVE-2020-11739", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-11739", }, ], notes: [ { category: "general", text: "An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service or possibly gain privileges because of missing memory barriers in read-write unlock paths. The read-write unlock paths don't contain a memory barrier. On Arm, this means a processor is allowed to re-order the memory access with the preceding ones. In other words, the unlock may be seen by another processor before all the memory accesses within the \"critical\" section. As a consequence, it may be possible to have a writer executing a critical section at the same time as readers or another writer. In other words, many of the assumptions (e.g., a variable cannot be modified after a check) in the critical sections are not safe anymore. The read-write locks are used in hypercalls (such as grant-table ones), so a malicious guest could exploit the race. For instance, there is a small window where Xen can leak memory if XENMAPSPACE_grant_table is used concurrently. A malicious guest may be able to leak memory, or cause a hypervisor crash resulting in a Denial of Service (DoS). Information leak and privilege escalation cannot be excluded.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-11739", url: "https://www.suse.com/security/cve/CVE-2020-11739", }, { category: "external", summary: "SUSE Bug 1168142 for CVE-2020-11739", url: "https://bugzilla.suse.com/1168142", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-06-16T15:01:26Z", details: "important", }, ], title: "CVE-2020-11739", }, { cve: "CVE-2020-11740", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-11740", }, ], notes: [ { category: "general", text: "An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (without active profiling) to obtain sensitive information about other guests. Unprivileged guests can request to map xenoprof buffers, even if profiling has not been enabled for those guests. These buffers were not scrubbed.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-11740", url: "https://www.suse.com/security/cve/CVE-2020-11740", }, { category: "external", summary: "SUSE Bug 1168140 for CVE-2020-11740", url: "https://bugzilla.suse.com/1168140", }, { category: "external", summary: "SUSE Bug 1178658 for CVE-2020-11740", url: "https://bugzilla.suse.com/1178658", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-06-16T15:01:26Z", details: "important", }, ], title: "CVE-2020-11740", }, { cve: "CVE-2020-11741", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-11741", }, ], notes: [ { category: "general", text: "An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (with active profiling) to obtain sensitive information about other guests, cause a denial of service, or possibly gain privileges. For guests for which \"active\" profiling was enabled by the administrator, the xenoprof code uses the standard Xen shared ring structure. Unfortunately, this code did not treat the guest as a potential adversary: it trusts the guest not to modify buffer size information or modify head / tail pointers in unexpected ways. This can crash the host (DoS). Privilege escalation cannot be ruled out.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-11741", url: "https://www.suse.com/security/cve/CVE-2020-11741", }, { category: "external", summary: "SUSE Bug 1168140 for CVE-2020-11741", url: "https://bugzilla.suse.com/1168140", }, { category: "external", summary: "SUSE Bug 1178658 for CVE-2020-11741", url: "https://bugzilla.suse.com/1178658", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-06-16T15:01:26Z", details: "important", }, ], title: "CVE-2020-11741", }, { cve: "CVE-2020-11742", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-11742", }, ], notes: [ { category: "general", text: "An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of bad continuation handling in GNTTABOP_copy. Grant table operations are expected to return 0 for success, and a negative number for errors. The fix for CVE-2017-12135 introduced a path through grant copy handling where success may be returned to the caller without any action taken. In particular, the status fields of individual operations are left uninitialised, and may result in errant behaviour in the caller of GNTTABOP_copy. A buggy or malicious guest can construct its grant table in such a way that, when a backend domain tries to copy a grant, it hits the incorrect exit path. This returns success to the caller without doing anything, which may cause crashes or other incorrect behaviour.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-11742", url: "https://www.suse.com/security/cve/CVE-2020-11742", }, { category: "external", summary: "SUSE Bug 1169392 for CVE-2020-11742", url: "https://bugzilla.suse.com/1169392", }, { category: "external", summary: "SUSE Bug 1178658 for CVE-2020-11742", url: "https://bugzilla.suse.com/1178658", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L", version: "3.1", }, products: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-06-16T15:01:26Z", details: "moderate", }, ], title: "CVE-2020-11742", }, { cve: "CVE-2020-7211", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-7211", }, ], notes: [ { category: "general", text: "tftp.c in libslirp 4.1.0, as used in QEMU 4.2.0, does not prevent ..\\ directory traversal on Windows.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-7211", url: "https://www.suse.com/security/cve/CVE-2020-7211", }, { category: "external", summary: "SUSE Bug 1161180 for CVE-2020-7211", url: "https://bugzilla.suse.com/1161180", }, { category: "external", summary: "SUSE Bug 1161181 for CVE-2020-7211", url: "https://bugzilla.suse.com/1161181", }, { category: "external", summary: "SUSE Bug 1178658 for CVE-2020-7211", url: "https://bugzilla.suse.com/1178658", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "HPE Helion OpenStack 8:xen-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-libs-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-4.9.4_06-3.62.1.x86_64", "HPE Helion OpenStack 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Enterprise Storage 5:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-doc-html-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-32bit-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-libs-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-4.9.4_06-3.62.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:xen-tools-domU-4.9.4_06-3.62.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2020-06-16T15:01:26Z", details: "moderate", }, ], title: "CVE-2020-7211", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.