openSUSE 10 Security Update : xen (xen-2156)

high Nessus Plugin ID 27482

Synopsis

The remote openSUSE host is missing a security update.

Description

This update fixes an issue on x86_64 in which a user-level application can crash the guest OS when running Xen.

The AC (alignment check) flag in RFLAGS was not being cleared on entry to the guest kernel, causing unwanted faults because the kernel runs in ring 3 on Xen.

Solution

Update the affected xen packages.

Plugin Details

Severity: High

ID: 27482

File Name: suse_xen-2156.nasl

Version: 1.13

Type: local

Agent: unix

Family: SuSE Local Security Checks

Published: 10/17/2007

Updated: 1/14/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:xen, p-cpe:/a:novell:opensuse:xen-devel, p-cpe:/a:novell:opensuse:xen-doc-html, p-cpe:/a:novell:opensuse:xen-doc-pdf, p-cpe:/a:novell:opensuse:xen-doc-ps, p-cpe:/a:novell:opensuse:xen-libs, p-cpe:/a:novell:opensuse:xen-libs-32bit, p-cpe:/a:novell:opensuse:xen-tools, p-cpe:/a:novell:opensuse:xen-tools-ioemu, p-cpe:/a:novell:opensuse:yast2-vm, cpe:/o:novell:opensuse:10.1

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 10/6/2006

Detections

Analytics