SuSE 11.2 Security Update : Xen and libvirt (SAT Patch Number 6640)

Medium Nessus Plugin ID 64235


The remote SuSE 11 host is missing one or more security updates.


Xen was updated to fix several security issues :

- A xen HVM guest destroy p2m teardown host DoS vulnerability was fixed, where malicious guest could lock/crash the host. (CVE-2012-3433)

- A xen HVM guest user mode MMIO emulation DoS was fixed.

- The xen pv bootloader doesn't check the size of the bzip2 or lzma compressed kernel, leading to denial of service (crash). (CVE-2012-2625)

Also the following bug in XEN has been fixed :

- Xen HVM DomU crash during Windows Server 2008 R2 install, when maxmem > memory This update also included bugfixes for:. (bnc#746702)

- vm-install: - bnc#762963 - ReaR: Unable to recover a paravirtualized XEN guest

- virt-manager - SLE11-SP2 ONLY

- virt-manager fails to start after upgrade to SLES11 SP2 from SLES10. (bnc#764982)


Apply SAT patch number 6640.

See Also

Plugin Details

Severity: Medium

ID: 64235

File Name: suse_11_xen-201208-120805.nasl

Version: $Revision: 1.2 $

Type: local

Agent: unix

Published: 2013/01/25

Modified: 2013/10/25

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:11:libvirt, p-cpe:/a:novell:suse_linux:11:libvirt-client, p-cpe:/a:novell:suse_linux:11:libvirt-client-32bit, p-cpe:/a:novell:suse_linux:11:libvirt-doc, p-cpe:/a:novell:suse_linux:11:libvirt-python, p-cpe:/a:novell:suse_linux:11:virt-manager, p-cpe:/a:novell:suse_linux:11:vm-install, p-cpe:/a:novell:suse_linux:11:xen, p-cpe:/a:novell:suse_linux:11:xen-doc-html, p-cpe:/a:novell:suse_linux:11:xen-doc-pdf, p-cpe:/a:novell:suse_linux:11:xen-kmp-default, p-cpe:/a:novell:suse_linux:11:xen-kmp-trace, p-cpe:/a:novell:suse_linux:11:xen-libs, p-cpe:/a:novell:suse_linux:11:xen-libs-32bit, p-cpe:/a:novell:suse_linux:11:xen-tools, p-cpe:/a:novell:suse_linux:11:xen-tools-domU, cpe:/o:novell:suse_linux:11

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2012/08/05

Reference Information

CVE: CVE-2012-2625, CVE-2012-3432, CVE-2012-3433