SUSE update for xen



Published: 2024-08-21
Risk Medium
Patch available YES
Number of vulnerabilities 2
CVE-ID CVE-2024-31145
CVE-2024-31146
CWE-ID CWE-388
CWE-399
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe 		SUSE Linux Enterprise Server for SAP Applications 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15 SP2 LTSS
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing 15
Operating systems & Components / Operating system

xen-tools-xendomains-wait-disk
Operating systems & Components / Operating system package or component

xen-devel
Operating systems & Components / Operating system package or component

xen-tools-debuginfo
Operating systems & Components / Operating system package or component

xen-libs-debuginfo
Operating systems & Components / Operating system package or component

xen-debugsource
Operating systems & Components / Operating system package or component

xen-libs
Operating systems & Components / Operating system package or component

xen
Operating systems & Components / Operating system package or component

xen-tools
Operating systems & Components / Operating system package or component

xen-tools-domU
Operating systems & Components / Operating system package or component

xen-tools-domU-debuginfo
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Improper error handling

EUVDB-ID: #VU96006

Risk: Medium

CVSSv3.1: 6.3 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-31145

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a malicious guest to escalate privileges on the system.

The vulnerability exists due to improper error handling in x86 IOMMU identity mapping. A malicious guest can access memory regions related to other guests or the hypervisor.

Mitigation

Update the affected package xen to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server for SAP Applications 15: SP2

SUSE Linux Enterprise Server 15 SP2 LTSS: 15-SP2

SUSE Linux Enterprise Server 15: SP2

SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS: 15-SP2

SUSE Linux Enterprise High Performance Computing 15: SP2

xen-tools-xendomains-wait-disk: before 4.13.5_14-150200.3.96.1

xen-devel: before 4.13.5_14-150200.3.96.1

xen-tools-debuginfo: before 4.13.5_14-150200.3.96.1

xen-libs-debuginfo: before 4.13.5_14-150200.3.96.1

xen-debugsource: before 4.13.5_14-150200.3.96.1

xen-libs: before 4.13.5_14-150200.3.96.1

xen: before 4.13.5_14-150200.3.96.1

xen-tools: before 4.13.5_14-150200.3.96.1

xen-tools-domU: before 4.13.5_14-150200.3.96.1

xen-tools-domU-debuginfo: before 4.13.5_14-150200.3.96.1

CPE2.3 External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242994-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Resource management error

EUVDB-ID: #VU96007

Risk: Medium

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-31146

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows a malicious guest to escalate privileges on the system.

The vulnerability exists due to improper management of shared resources when using PCI pass-through. A malicious guest can escalate privileges on the system.

Mitigation

Update the affected package xen to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server for SAP Applications 15: SP2

SUSE Linux Enterprise Server 15 SP2 LTSS: 15-SP2

SUSE Linux Enterprise Server 15: SP2

SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS: 15-SP2

SUSE Linux Enterprise High Performance Computing 15: SP2

xen-tools-xendomains-wait-disk: before 4.13.5_14-150200.3.96.1

xen-devel: before 4.13.5_14-150200.3.96.1

xen-tools-debuginfo: before 4.13.5_14-150200.3.96.1

xen-libs-debuginfo: before 4.13.5_14-150200.3.96.1

xen-debugsource: before 4.13.5_14-150200.3.96.1

xen-libs: before 4.13.5_14-150200.3.96.1

xen: before 4.13.5_14-150200.3.96.1

xen-tools: before 4.13.5_14-150200.3.96.1

xen-tools-domU: before 4.13.5_14-150200.3.96.1

xen-tools-domU-debuginfo: before 4.13.5_14-150200.3.96.1

CPE2.3 External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242994-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###