OracleVM 3.4 : xen (OVMSA-2019-0016) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

Medium Nessus Plugin ID 125104

Synopsis

The remote OracleVM host is missing one or more security updates.

Description

The remote OracleVM system is missing necessary patches to address critical security updates :

- BUILDINFO: OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

- BUILDINFO: xen commit=3885a020649df84b883ea20d11ca15b7d7640201

- BUILDINFO: QEMU upstream commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

- BUILDINFO: QEMU traditional commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba

- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

- x86/HVM: don't give the wrong impression of WRMSR succeeding (root)

- BUILDINFO: OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

- BUILDINFO: xen commit=71714f34026c4e0b105bf2def8d2dc4c7171d5b8

- BUILDINFO: QEMU upstream commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

- BUILDINFO: QEMU traditional commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba

- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

- Red-tape: Update repo with new CVE for XSA-297 (Patrick Colp) [Orabug: 29725297] (CVE-2019-11091)

- x86/spec-ctl: Expose X86_FEATURE_MD_CLEAR to guests (Patrick Colp) [Orabug: 29677162] (CVE-2018-12126) (CVE-2018-12127) (CVE-2018-12130)

- x86/spec-ctrl: Introduce options to control VERW flushing (Andrew Cooper) [Orabug: 2977162] (CVE-2018-12126) (CVE-2018-12127) (CVE-2018-12130) (CVE-2018-12126) (CVE-2018-12127) (CVE-2018-12130)

- x86/spec-ctrl: Infrastructure to use VERW to flush pipeline buffers (Andrew Cooper) [Orabug: 29677162] (CVE-2018-12126) (CVE-2018-12127) (CVE-2018-12130) (CVE-2018-12126) (CVE-2018-12127) (CVE-2018-12130)

- x86/spec-ctrl: CPUID/MSR definitions for Microarchitectural Data Sampling (Andrew Cooper) [Orabug: 29677162] (CVE-2018-12126) (CVE-2018-12127) (CVE-2018-12130) (CVE-2018-12126) (CVE-2018-12127) (CVE-2018-12130)

- BUILDINFO: OVMF commit=173bf5c847e3ca8b42c11796ce048d8e2e916ff8

- BUILDINFO: xen commit=0d8ecd7732e56484c10e4b584de17d360d940252

- BUILDINFO: QEMU upstream commit=8bff6989bd0bafcc0ddf859c23ce6a2ff21a80ff

- BUILDINFO: QEMU traditional commit=346fdd7edd73f8287d0d0a2bab9c67b71bc6b8ba

- BUILDINFO: IPXE commit=9a93db3f0947484e30e753bbd61a10b17336e20e

- BUILDINFO: SeaBIOS commit=7d9cbe613694924921ed1a6f8947d711c5832eee

- Config: Update git links to use linux-git.us.oracle.com (Patrick Colp)

- gnttab: set page refcount for copy-on-grant-transfer (Jan Beulich)

Solution

Update the affected xen / xen-tools packages.

See Also

https://oss.oracle.com/pipermail/oraclevm-errata/2019-May/000939.html

Plugin Details

Severity: Medium

ID: 125104

File Name: oraclevm_OVMSA-2019-0016.nasl

Version: 1.3

Type: local

Published: 2019/05/15

Updated: 2019/09/27

Dependencies: 12634

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:N/A:N

CVSS v3.0

Base Score: 6.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Vulnerability Information

CPE: p-cpe:/a:oracle:vm:xen, p-cpe:/a:oracle:vm:xen-tools, cpe:/o:oracle:vm_server:3.4

Required KB Items: Host/local_checks_enabled, Host/OracleVM/release, Host/OracleVM/rpm-list

Patch Publication Date: 2019/05/14

Vulnerability Publication Date: 2019/05/30

Reference Information

CVE: CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091