SuSE 11.1 Security Update : Xen (SAT Patch Number 6653)

Medium Nessus Plugin ID 64234


The remote SuSE 11 host is missing one or more security updates.


Xen was updated to fix several security issues :

- A xen HVM guest destroy p2m teardown host DoS vulnerability was fixed, where malicious guest could lock/crash the host. (CVE-2012-3433)

- A xen HVM guest user mode MMIO emulation DoS was fixed.

- The xen pv bootloader doesn't check the size of the bzip2 or lzma compressed kernel, leading to denial of service (crash). (CVE-2012-2625)

Also the following bug in XEN was fixed :

- Xen HVM DomU crash during Windows Server 2008 R2 install, when maxmem > memory This update also included bugfixes for:. (bnc#746702)

- vm-install: - bnc#762963 - ReaR: Unable to recover a paravirtualized XEN guest


Apply SAT patch number 6653.

See Also

Plugin Details

Severity: Medium

ID: 64234

File Name: suse_11_xen-201208-120803.nasl

Version: $Revision: 1.2 $

Type: local

Agent: unix

Published: 2013/01/25

Modified: 2013/10/25

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:11:vm-install, p-cpe:/a:novell:suse_linux:11:xen, p-cpe:/a:novell:suse_linux:11:xen-doc-html, p-cpe:/a:novell:suse_linux:11:xen-doc-pdf, p-cpe:/a:novell:suse_linux:11:xen-kmp-default, p-cpe:/a:novell:suse_linux:11:xen-kmp-pae, p-cpe:/a:novell:suse_linux:11:xen-kmp-trace, p-cpe:/a:novell:suse_linux:11:xen-libs, p-cpe:/a:novell:suse_linux:11:xen-tools, p-cpe:/a:novell:suse_linux:11:xen-tools-domU, cpe:/o:novell:suse_linux:11

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2012/08/03

Reference Information

CVE: CVE-2012-2625, CVE-2012-3432, CVE-2012-3433