openSUSE Security Update : xen-201105 (openSUSE-SU-2011:0578-1)

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

Collective May/2011 update for Xen

Xen :

- 675363 - Random lockups with kernel-xen. Possibly
graphics related.

- 679344 - Xen: multi-vCPU pv guest may crash host

- 681044 - update xenpaging.autostart.patch

- 681302 - xm create -x <guest> returns 'ImportError: No
module named ext'

- 688473 - potential buffer overflow in tools

- 691738 - Xen does not find device create with npiv block

vm-install :

- 688757 - SLED10SP4 fully virtualized in SLES10SP4 XEN -
kernel panic

- 678152 - Xen: virt-manager: harmless block device admin
actions on FV guests mess up network (VIF) device type
==> network lost.

- 631680 - OpenSUSE 11.3 KVM install of windows xp fails
on first reboot during installation.

See also :

http://lists.opensuse.org/opensuse-updates/2011-05/msg00065.html
https://bugzilla.novell.com/show_bug.cgi?id=631680
https://bugzilla.novell.com/show_bug.cgi?id=675363
https://bugzilla.novell.com/show_bug.cgi?id=678152
https://bugzilla.novell.com/show_bug.cgi?id=679344
https://bugzilla.novell.com/show_bug.cgi?id=681044
https://bugzilla.novell.com/show_bug.cgi?id=681302
https://bugzilla.novell.com/show_bug.cgi?id=688473
https://bugzilla.novell.com/show_bug.cgi?id=688757
https://bugzilla.novell.com/show_bug.cgi?id=691238
https://bugzilla.novell.com/show_bug.cgi?id=691738

Solution :

Update the affected xen-201105 packages.

Risk factor :

Medium / CVSS Base Score : 6.9
(CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C)

Family: SuSE Local Security Checks

Nessus Plugin ID: 76048 ()

Bugtraq ID:

CVE ID: CVE-2011-1146
CVE-2011-1166
CVE-2011-1486
CVE-2011-1583

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now