SuSE 11.3 Security Update : Xen (SAT Patch Number 9828)

High Nessus Plugin ID 78652


The remote SuSE 11 host is missing one or more security updates.


The SUSE Linux Enterprise 11 Service Pack 3 Xen package was updated to fix various bugs and security issues.

The following security issues have been fixed :

- XSA-108: CVE-2014-7188: Improper MSR range used for x2APIC emulation. (bnc#897657)

- XSA-106: CVE-2014-7156: Missing privilege level checks in x86 emulation of software interrupts. (bnc#895802)

- XSA-105: CVE-2014-7155: Missing privilege level checks in x86 HLT, LGDT, LIDT, and LMSW emulation. (bnc#895799)

- XSA-104: CVE-2014-7154: Race condition in HVMOP_track_dirty_vram. (bnc#895798)

- XSA-100: CVE-2014-4021: Hypervisor heap contents leaked to guests. (bnc#880751)

- XSA-96: CVE-2014-3967 / CVE-2014-3968: Vulnerabilities in HVM MSI injection. (bnc#878841)

- XSA-89: CVE-2014-2599: HVMOP_set_mem_access is not preemptible. (bnc#867910)

- XSA-65: CVE-2013-4344: qemu SCSI REPORT LUNS buffer overflow. (bnc#842006)

- qemu: zaurus: buffer overrun on invalid state load (bnc#864801) The following non-security issues have been fixed:. (CVE-2013-4540)

- xend: Fix netif convertToDeviceNumber for running domains. (bnc#891539)

- Installing SLES12 as a VM on SLES11 SP3 fails because of btrfs in the VM. (bnc#882092)

- XEN kernel panic do_device_not_available(). (bnc#881900)

- Boot Failure with xen kernel in UEFI mode with error 'No memory for trampoline'. (bnc#833483)

- SLES 11 SP3 vm-install should get RHEL 7 support when released. (bnc#862608)

- SLES 11 SP3 XEN kiso version cause softlockup on 8 blades npar(480 cpu). (bnc#858178)

- Local attach support for PHY backends using scripts local_attach_support_for_phy.patch. (bnc#865682)

- Improve multipath support for npiv devices block-npiv (bnc#798770)


Apply SAT patch number 9828.

See Also

Plugin Details

Severity: High

ID: 78652

File Name: suse_11_xen-201409-141002.nasl

Version: $Revision: 1.1 $

Type: local

Agent: unix

Published: 2014/10/23

Modified: 2014/10/23

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 8.3

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:11:xen, p-cpe:/a:novell:suse_linux:11:xen-doc-html, p-cpe:/a:novell:suse_linux:11:xen-doc-pdf, p-cpe:/a:novell:suse_linux:11:xen-kmp-default, p-cpe:/a:novell:suse_linux:11:xen-kmp-pae, p-cpe:/a:novell:suse_linux:11:xen-libs, p-cpe:/a:novell:suse_linux:11:xen-libs-32bit, p-cpe:/a:novell:suse_linux:11:xen-tools, p-cpe:/a:novell:suse_linux:11:xen-tools-domU, cpe:/o:novell:suse_linux:11

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2014/10/02

Reference Information

CVE: CVE-2013-4344, CVE-2013-4540, CVE-2014-2599, CVE-2014-3967, CVE-2014-3968, CVE-2014-4021, CVE-2014-7154, CVE-2014-7155, CVE-2014-7156, CVE-2014-7188