SuSE 11.1 Security Update : Xen (SAT Patch Number 4977)

high Nessus Plugin ID 55973

Synopsis

The remote SuSE 11 host is missing one or more security updates.

Description

Security / Collective Update for Xen

Xen :

- VUL-0: xen: VT-d (PCI passthrough) MSI trap injection.
(CVE-2011-1898). (bnc#702025)

- update block-npiv scripts to support BFA HBA.
(bnc#703924)

- L3: Live migrations fail when guest crashes:
domain_crash_sync called from entry.S. (bnc#689954)

- Bridge hangs cause redundant ring failures in SLE 11 SP1 HAE + XEN. (bnc#693472)

- xen-scsi.ko not supported. (bnc#582265)

- When connecting to Xen guest through vncviewer mouse tracking is off. (bnc#670465)

- on_crash is being ignored with kdump now working in HVM.
(bnc#684305)

- HVM taking too long to dump vmcore. (bnc#684297)

- crm resource migrate fails with xen machines.
(bnc#704160)

- xm console DomUName hang after 'xm save/restore' of PVM on the latest Xen vm-install:. (bnc#706574)

- virt-manager has problems to install guest from multiple CD. (bnc#692625)

Solution

Apply SAT patch number 4977.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=582265

https://bugzilla.novell.com/show_bug.cgi?id=670465

https://bugzilla.novell.com/show_bug.cgi?id=684297

https://bugzilla.novell.com/show_bug.cgi?id=684305

https://bugzilla.novell.com/show_bug.cgi?id=689954

https://bugzilla.novell.com/show_bug.cgi?id=692625

https://bugzilla.novell.com/show_bug.cgi?id=693472

https://bugzilla.novell.com/show_bug.cgi?id=702025

https://bugzilla.novell.com/show_bug.cgi?id=703924

https://bugzilla.novell.com/show_bug.cgi?id=704160

https://bugzilla.novell.com/show_bug.cgi?id=706574

http://support.novell.com/security/cve/CVE-2011-1898.html

Plugin Details

Severity: High

ID: 55973

File Name: suse_11_xen-201107-110808.nasl

Version: 1.6

Type: local

Agent: unix

Published: 8/25/2011

Updated: 1/19/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.8

CVSS v2

Risk Factor: High

Base Score: 7.4

Vector: CVSS2#AV:A/AC:M/Au:S/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:11:vm-install, p-cpe:/a:novell:suse_linux:11:xen, p-cpe:/a:novell:suse_linux:11:xen-doc-html, p-cpe:/a:novell:suse_linux:11:xen-doc-pdf, p-cpe:/a:novell:suse_linux:11:xen-kmp-default, p-cpe:/a:novell:suse_linux:11:xen-kmp-pae, p-cpe:/a:novell:suse_linux:11:xen-libs, p-cpe:/a:novell:suse_linux:11:xen-tools, p-cpe:/a:novell:suse_linux:11:xen-tools-domu, cpe:/o:novell:suse_linux:11

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 8/8/2011

Reference Information

CVE: CVE-2011-1898