SUSE update for xen
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Input validation error
EUVDB-ID: #VU88228
Risk: Medium
CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2023-46842
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a malicious guest to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient validation of register values when invoking a hypercall. A malicious HVM or PVH guest can pass specially crafted input to the hypervisor and perform a denial of service (DoS) attack.
MitigationUpdate the affected package xen to the latest version.
Vulnerable software versionsopenSUSE Leap Micro: 5.5
SUSE Linux Enterprise Micro: 5.5
Server Applications Module: 15-SP5
Basesystem Module: 15-SP5
SUSE Linux Enterprise Server for SAP Applications 15: SP5
SUSE Linux Enterprise Server 15: SP5
SUSE Linux Enterprise Real Time 15: SP5
SUSE Linux Enterprise High Performance Computing 15: SP5
SUSE Linux Enterprise Desktop 15: SP5
openSUSE Leap: 15.5
xen-libs-64bit-debuginfo: before 4.17.4_04-150500.3.33.1
xen-libs-64bit: before 4.17.4_04-150500.3.33.1
xen-doc-html: before 4.17.4_04-150500.3.33.1
xen-libs-32bit: before 4.17.4_04-150500.3.33.1
xen-libs-32bit-debuginfo: before 4.17.4_04-150500.3.33.1
xen-libs: before 4.17.4_04-150500.3.33.1
xen-tools-domU: before 4.17.4_04-150500.3.33.1
xen-tools-domU-debuginfo: before 4.17.4_04-150500.3.33.1
xen-libs-debuginfo: before 4.17.4_04-150500.3.33.1
xen-tools-xendomains-wait-disk: before 4.17.4_04-150500.3.33.1
xen-devel: before 4.17.4_04-150500.3.33.1
xen: before 4.17.4_04-150500.3.33.1
xen-tools-debuginfo: before 4.17.4_04-150500.3.33.1
xen-tools: before 4.17.4_04-150500.3.33.1
xen-debugsource: before 4.17.4_04-150500.3.33.1
CPE2.3- cpe:2.3:o:suse:opensuse_leap_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:server_applications_module:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:basesystem_module:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20242654-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Improper locking
EUVDB-ID: #VU94499
Risk: Medium
CVSSv3.1: 5.9 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-31143
CWE-ID:
CWE-667 - Improper Locking
Exploit availability: No
DescriptionThe vulnerability allows a malicious guest to perform a denial of service (DoS) attack.
The vulnerability exists due to double unlock in x86 guest IRQ handling. An optional feature of PCI MSI called "Multiple Message" allows a device to use multiple consecutive interrupt vectors. A malicious guest can crash the hypervisor.
Update the affected package xen to the latest version.
Vulnerable software versionsopenSUSE Leap Micro: 5.5
SUSE Linux Enterprise Micro: 5.5
Server Applications Module: 15-SP5
Basesystem Module: 15-SP5
SUSE Linux Enterprise Server for SAP Applications 15: SP5
SUSE Linux Enterprise Server 15: SP5
SUSE Linux Enterprise Real Time 15: SP5
SUSE Linux Enterprise High Performance Computing 15: SP5
SUSE Linux Enterprise Desktop 15: SP5
openSUSE Leap: 15.5
xen-libs-64bit-debuginfo: before 4.17.4_04-150500.3.33.1
xen-libs-64bit: before 4.17.4_04-150500.3.33.1
xen-doc-html: before 4.17.4_04-150500.3.33.1
xen-libs-32bit: before 4.17.4_04-150500.3.33.1
xen-libs-32bit-debuginfo: before 4.17.4_04-150500.3.33.1
xen-libs: before 4.17.4_04-150500.3.33.1
xen-tools-domU: before 4.17.4_04-150500.3.33.1
xen-tools-domU-debuginfo: before 4.17.4_04-150500.3.33.1
xen-libs-debuginfo: before 4.17.4_04-150500.3.33.1
xen-tools-xendomains-wait-disk: before 4.17.4_04-150500.3.33.1
xen-devel: before 4.17.4_04-150500.3.33.1
xen: before 4.17.4_04-150500.3.33.1
xen-tools-debuginfo: before 4.17.4_04-150500.3.33.1
xen-tools: before 4.17.4_04-150500.3.33.1
xen-debugsource: before 4.17.4_04-150500.3.33.1
CPE2.3- cpe:2.3:o:suse:opensuse_leap_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.5:*:*:*:*:*:*:
- cpe:2.3:o:suse:server_applications_module:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:basesystem_module:15-SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP5:*:*:*:*:*:*:
- cpe:2.3:o:suse:opensuse_leap:15.5:*:*:*:*:*:*:
http://www.suse.com/support/update/announcement/2024/suse-su-20242654-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
