Security update for xen

Announcement ID:	SUSE-SU-2015:2338-1
Rating:	moderate
References:	bsc#947165 bsc#950703 bsc#950704 bsc#950705 bsc#950706 bsc#951845 bsc#954018 bsc#954405 bsc#955399 bsc#956408 bsc#956409 bsc#956411 bsc#956592 bsc#956832
Cross-References:	CVE-2015-5307 CVE-2015-7311 CVE-2015-7504 CVE-2015-7835 CVE-2015-7969 CVE-2015-7970 CVE-2015-7971 CVE-2015-7972 CVE-2015-8104 CVE-2015-8339 CVE-2015-8340 CVE-2015-8341 CVE-2015-8345
CVSS scores:	CVE-2015-7504 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected Products:	SLES for SAP Applications 11-SP4 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4

An update that solves 13 vulnerabilities and has one security fix can now be installed.

Description:

  This update fixes the following security issues:

• bsc#955399 - Fix xm migrate --log_progress. Due to logic error progress was not logged when requested.

• bsc#956832 - CVE-2015-8345: xen: qemu: net: eepro100: infinite loop in processing command block list

• bsc#956592 - xen: virtual PMU is unsupported (XSA-163)

• bsc#956408 - CVE-2015-8339, CVE-2015-8340: xen: XENMEM_exchange error handling issues (XSA-159)

• bsc#956409 - CVE-2015-8341: xen: libxl leak of pv kernel and initrd on error (XSA-160)

• bsc#956411 - CVE-2015-7504: xen: heap buffer overflow vulnerability in pcnet emulator (XSA-162)

• bsc#947165 - CVE-2015-7311: xen: libxl fails to honour readonly flag on disks with qemu-xen (xsa-142)

• bsc#955399 - Fix xm migrate --live. The options were not passed due to a merge error. As a result the migration was not live, instead the suspended guest was migrated.

• bsc#954405 - CVE-2015-8104: Xen: guest to host DoS by triggering an infinite loop in microcode via #DB exception

• bsc#954018 - CVE-2015-5307: xen: x86: CPU lockup during fault delivery (XSA-156)

• bsc#950704 - CVE-2015-7970: xen: x86: Long latency populate-on-demand operation is not preemptible (XSA-150)

• bsc#951845 - CVE-2015-7972: xen: x86: populate-on-demand balloon size inaccuracy can crash guests (XSA-153)

• Drop 5604f239-x86-PV-properly-populate-descriptor-tables.patch

• bsc#950703 - CVE-2015-7969: xen: leak of main per-domain vcpu pointer array (DoS) (XSA-149)

• bsc#950705 - CVE-2015-7969: xen: x86: leak of per-domain profiling-related vcpu pointer array (DoS) (XSA-151)

• bsc#950706 - CVE-2015-7971: xen: x86: some pmu and profiling hypercalls log without rate limiting (XSA-152)

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• SUSE Linux Enterprise Desktop 11 SP4
  zypper in -t patch sledsp4-xen-20151203-12277=1
• SUSE Linux Enterprise Software Development Kit 11 SP4
  zypper in -t patch sdksp4-xen-20151203-12277=1
• SUSE Linux Enterprise Server 11 SP4
  zypper in -t patch slessp4-xen-20151203-12277=1
• SLES for SAP Applications 11-SP4
  zypper in -t patch slessp4-xen-20151203-12277=1

Package List:

• SUSE Linux Enterprise Desktop 11 SP4 (x86_64 i586)
  • xen-kmp-default-4.4.3_06_3.0.101_65-29.1
  • xen-tools-domU-4.4.3_06-29.1
  • xen-libs-4.4.3_06-29.1
• SUSE Linux Enterprise Desktop 11 SP4 (i586)
  • xen-kmp-pae-4.4.3_06_3.0.101_65-29.1
• SUSE Linux Enterprise Desktop 11 SP4 (x86_64)
  • xen-tools-4.4.3_06-29.1
  • xen-4.4.3_06-29.1
  • xen-libs-32bit-4.4.3_06-29.1
  • xen-doc-html-4.4.3_06-29.1
• SUSE Linux Enterprise Software Development Kit 11 SP4 (x86_64 i586)
  • xen-devel-4.4.3_06-29.1
• SUSE Linux Enterprise Server 11 SP4 (x86_64 i586)
  • xen-kmp-default-4.4.3_06_3.0.101_65-29.1
  • xen-tools-domU-4.4.3_06-29.1
  • xen-libs-4.4.3_06-29.1
• SUSE Linux Enterprise Server 11 SP4 (i586)
  • xen-kmp-pae-4.4.3_06_3.0.101_65-29.1
• SUSE Linux Enterprise Server 11 SP4 (x86_64)
  • xen-tools-4.4.3_06-29.1
  • xen-4.4.3_06-29.1
  • xen-libs-32bit-4.4.3_06-29.1
  • xen-doc-html-4.4.3_06-29.1
• SLES for SAP Applications 11-SP4 (x86_64)
  • xen-libs-32bit-4.4.3_06-29.1
  • xen-kmp-default-4.4.3_06_3.0.101_65-29.1
  • xen-tools-domU-4.4.3_06-29.1
  • xen-libs-4.4.3_06-29.1
  • xen-4.4.3_06-29.1
  • xen-doc-html-4.4.3_06-29.1
  • xen-tools-4.4.3_06-29.1

References:

• https://www.suse.com/security/cve/CVE-2015-5307.html
• https://www.suse.com/security/cve/CVE-2015-7311.html
• https://www.suse.com/security/cve/CVE-2015-7504.html
• https://www.suse.com/security/cve/CVE-2015-7835.html
• https://www.suse.com/security/cve/CVE-2015-7969.html
• https://www.suse.com/security/cve/CVE-2015-7970.html
• https://www.suse.com/security/cve/CVE-2015-7971.html
• https://www.suse.com/security/cve/CVE-2015-7972.html
• https://www.suse.com/security/cve/CVE-2015-8104.html
• https://www.suse.com/security/cve/CVE-2015-8339.html
• https://www.suse.com/security/cve/CVE-2015-8340.html
• https://www.suse.com/security/cve/CVE-2015-8341.html
• https://www.suse.com/security/cve/CVE-2015-8345.html
• https://bugzilla.suse.com/show_bug.cgi?id=947165
• https://bugzilla.suse.com/show_bug.cgi?id=950703
• https://bugzilla.suse.com/show_bug.cgi?id=950704
• https://bugzilla.suse.com/show_bug.cgi?id=950705
• https://bugzilla.suse.com/show_bug.cgi?id=950706
• https://bugzilla.suse.com/show_bug.cgi?id=951845
• https://bugzilla.suse.com/show_bug.cgi?id=954018
• https://bugzilla.suse.com/show_bug.cgi?id=954405
• https://bugzilla.suse.com/show_bug.cgi?id=955399
• https://bugzilla.suse.com/show_bug.cgi?id=956408
• https://bugzilla.suse.com/show_bug.cgi?id=956409
• https://bugzilla.suse.com/show_bug.cgi?id=956411
• https://bugzilla.suse.com/show_bug.cgi?id=956592
• https://bugzilla.suse.com/show_bug.cgi?id=956832