SuSE 11.1 Security Update : Xen (SAT Patch Number 6653)
Medium Nessus Plugin ID 64234
The remote SuSE 11 host is missing one or more security updates.
Xen was updated to fix several security issues : - A xen HVM guest destroy p2m teardown host DoS vulnerability was fixed, where malicious guest could lock/crash the host. (CVE-2012-3433) - A xen HVM guest user mode MMIO emulation DoS was fixed. (CVE-2012-3432) - The xen pv bootloader doesn't check the size of the bzip2 or lzma compressed kernel, leading to denial of service (crash). (CVE-2012-2625) Also the following bug in XEN was fixed : - Xen HVM DomU crash during Windows Server 2008 R2 install, when maxmem > memory This update also included bugfixes for:. (bnc#746702) - vm-install: - bnc#762963 - ReaR: Unable to recover a paravirtualized XEN guest