openSUSE Security Update : xen (openSUSE-2012-404)

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This update of XEN fixed multiple security flaws that could be
exploited by local attackers to cause a Denial of Service or
potentially escalate privileges. Additionally, several other upstream
changes were backported.

See also :

https://bugzilla.novell.com/show_bug.cgi?id=649209
https://bugzilla.novell.com/show_bug.cgi?id=683580
https://bugzilla.novell.com/show_bug.cgi?id=691256
https://bugzilla.novell.com/show_bug.cgi?id=694863
https://bugzilla.novell.com/show_bug.cgi?id=701686
https://bugzilla.novell.com/show_bug.cgi?id=704160
https://bugzilla.novell.com/show_bug.cgi?id=706106
https://bugzilla.novell.com/show_bug.cgi?id=706574
https://bugzilla.novell.com/show_bug.cgi?id=708025
https://bugzilla.novell.com/show_bug.cgi?id=712051
https://bugzilla.novell.com/show_bug.cgi?id=712823
https://bugzilla.novell.com/show_bug.cgi?id=714183
https://bugzilla.novell.com/show_bug.cgi?id=715655
https://bugzilla.novell.com/show_bug.cgi?id=716695
https://bugzilla.novell.com/show_bug.cgi?id=725169
https://bugzilla.novell.com/show_bug.cgi?id=726332
https://bugzilla.novell.com/show_bug.cgi?id=727515
https://bugzilla.novell.com/show_bug.cgi?id=732782
https://bugzilla.novell.com/show_bug.cgi?id=734826
https://bugzilla.novell.com/show_bug.cgi?id=736824
https://bugzilla.novell.com/show_bug.cgi?id=739585
https://bugzilla.novell.com/show_bug.cgi?id=740165
https://bugzilla.novell.com/show_bug.cgi?id=746702
https://bugzilla.novell.com/show_bug.cgi?id=757537
https://bugzilla.novell.com/show_bug.cgi?id=757970
https://bugzilla.novell.com/show_bug.cgi?id=764077

Solution :

Update the affected xen packages.

Risk factor :

High / CVSS Base Score : 7.4
(CVSS2#AV:A/AC:M/Au:S/C:C/I:C/A:C)
Public Exploit Available : true

Family: SuSE Local Security Checks

Nessus Plugin ID: 74683 ()

Bugtraq ID:

CVE ID: CVE-2012-0029
CVE-2012-0217
CVE-2012-0218
CVE-2012-2934

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now