openSUSE Security Update : xen-201107 (openSUSE-SU-2011:0941-1)

high Nessus Plugin ID 75777

Synopsis

The remote openSUSE host is missing a security update.

Description

Security / Collective Update for Xen

Xen :

- bnc#702025 - VUL-0: xen: VT-d (PCI passthrough) MSI trap injection (CVE-2011-1898)

- bnc#703924 - update block-npiv scripts to support BFA HBA

- bnc#689954 - L3: Live migrations fail when guest crashes: domain_crash_sync called from entry.S

- bnc#693472 - Bridge hangs cause redundant ring failures in SLE 11 SP1 HAE + XEN

- bnc#582265 - xen-scsi.ko not supported

- bnc#670465 - When connecting to Xen guest through vncviewer mouse tracking is off.

- bnc#684305 - on_crash is being ignored with kdump now working in HVM

vm-install :

- bnc#692625 - virt-manager has problems to install guest from multiple CD

Solution

Update the affected xen-201107 packages.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=582265

https://bugzilla.novell.com/show_bug.cgi?id=670465

https://bugzilla.novell.com/show_bug.cgi?id=684297

https://bugzilla.novell.com/show_bug.cgi?id=684305

https://bugzilla.novell.com/show_bug.cgi?id=689954

https://bugzilla.novell.com/show_bug.cgi?id=692625

https://bugzilla.novell.com/show_bug.cgi?id=693472

https://bugzilla.novell.com/show_bug.cgi?id=702025

https://bugzilla.novell.com/show_bug.cgi?id=703924

https://lists.opensuse.org/opensuse-updates/2011-08/msg00034.html

Plugin Details

Severity: High

ID: 75777

File Name: suse_11_3_xen-201107-110726.nasl

Version: 1.5

Type: local

Agent: unix

Published: 6/13/2014

Updated: 1/14/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.8

CVSS v2

Risk Factor: High

Base Score: 7.4

Vector: CVSS2#AV:A/AC:M/Au:S/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:vm-install, p-cpe:/a:novell:opensuse:xen, p-cpe:/a:novell:opensuse:xen-devel, p-cpe:/a:novell:opensuse:xen-doc-html, p-cpe:/a:novell:opensuse:xen-doc-pdf, p-cpe:/a:novell:opensuse:xen-kmp-default, p-cpe:/a:novell:opensuse:xen-kmp-desktop, p-cpe:/a:novell:opensuse:xen-kmp-pae, p-cpe:/a:novell:opensuse:xen-libs, p-cpe:/a:novell:opensuse:xen-tools, p-cpe:/a:novell:opensuse:xen-tools-domu, cpe:/o:novell:opensuse:11.3

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 7/26/2011

Reference Information

CVE: CVE-2011-1898