SuSE 10 Security Update : Xen (ZYPP Patch Number 7654)

High Nessus Plugin ID 57266


The remote SuSE 10 host is missing a security-related patch.


A security bug was fixed in Xen

- A bug was found in the way Xen handles CPUID instruction emulation during VM exits. An unprivileged guest user can potentially use this flaw to crash the guest.

This issue only affected systems running on x86 architecture with Intel processor and VMX virtualization extension enabled.


Apply ZYPP patch number 7654.

See Also

Plugin Details

Severity: High

ID: 57266

File Name: suse_xen-7654.nasl

Version: 1.8

Type: local

Agent: unix

Published: 2011/12/13

Updated: 2019/10/25

Dependencies: 12634

Risk Information

Risk Factor: High

CVSS v2.0

Base Score: 7.4

Vector: CVSS2#AV:A/AC:M/Au:S/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:suse:suse_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2011/07/26

Vulnerability Publication Date: 2011/08/12

Reference Information

CVE: CVE-2011-1898, CVE-2011-1936