Upstream information

CVE-2012-0029 at MITRE

Description

Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU crash) and possibly execute arbitrary code via crafted legacy mode packets.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 7.37
Vector AV:A/AC:M/Au:S/C:C/I:C/A:C
Access Vector Adjacent Network
Access Complexity Medium
Authentication Single
Confidentiality Impact Complete
Integrity Impact Complete
Availability Impact Complete

This issue is currently rated as having critical severity.

SUSE Bugzilla entries: 740165 [RESOLVED / FIXED], 747331 [RESOLVED / FIXED], 757537 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Desktop 12
  • xen >= 4.4.1_06-2.2
  • xen-kmp-default >= 4.4.1_06_k3.12.28_4-2.2
  • xen-libs >= 4.4.1_06-2.2
  • xen-libs-32bit >= 4.4.1_06-2.2
Patchnames:
SUSE Linux Enterprise Desktop 12 GA xen
SUSE Linux Enterprise Desktop 12 SP1
  • xen >= 4.5.1_12-2.3
  • xen-kmp-default >= 4.5.1_12_k3.12.49_11-2.3
  • xen-libs >= 4.5.1_12-2.3
  • xen-libs-32bit >= 4.5.1_12-2.3
Patchnames:
SUSE Linux Enterprise Desktop 12 SP1 GA xen
SUSE Linux Enterprise Desktop 12 SP2
  • xen >= 4.7.0_12-23.4
  • xen-libs >= 4.7.0_12-23.4
  • xen-libs-32bit >= 4.7.0_12-23.4
Patchnames:
SUSE Linux Enterprise Desktop 12 SP2 GA xen
SUSE Linux Enterprise Desktop 12 SP3
  • xen >= 4.9.0_08-2.2
  • xen-libs >= 4.9.0_08-2.2
  • xen-libs-32bit >= 4.9.0_08-2.2
Patchnames:
SUSE Linux Enterprise Desktop 12 SP3 GA xen
SUSE Linux Enterprise Server 11 SP1
  • kvm >= 0.12.5-1.20.1
  • libvirt >= 0.7.6-1.29.2
  • libvirt-doc >= 0.7.6-1.29.2
  • libvirt-python >= 0.7.6-1.29.2
  • virt-utils >= 1.1.3-1.5.1
  • xen >= 4.0.3_21548_02-0.5.2
  • xen-doc-html >= 4.0.3_21548_02-0.5.2
  • xen-doc-pdf >= 4.0.3_21548_02-0.5.2
  • xen-kmp-default >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2
  • xen-kmp-pae >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2
  • xen-kmp-trace >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2
  • xen-libs >= 4.0.3_21548_02-0.5.2
  • xen-tools >= 4.0.3_21548_02-0.5.2
  • xen-tools-domU >= 4.0.3_21548_02-0.5.2
Patchnames:
slessp1-kvm
slessp1-xen-201202
SUSE Linux Enterprise Server 11 SP2
  • xen >= 4.1.2_14-0.5.5
  • xen-doc-html >= 4.1.2_14-0.5.5
  • xen-doc-pdf >= 4.1.2_14-0.5.5
  • xen-kmp-default >= 4.1.2_14_3.0.13_0.27-0.5.5
  • xen-kmp-pae >= 4.1.2_14_3.0.13_0.27-0.5.5
  • xen-libs >= 4.1.2_14-0.5.5
  • xen-libs-32bit >= 4.1.2_14-0.5.5
  • xen-tools >= 4.1.2_14-0.5.5
  • xen-tools-domU >= 4.1.2_14-0.5.5
Patchnames:
SUSE Linux Enterprise Server 11 SP2 GA xen
SUSE Linux Enterprise Server 11 SP3
  • xen >= 4.2.2_04-0.7.5
  • xen-doc-html >= 4.2.2_04-0.7.5
  • xen-doc-pdf >= 4.2.2_04-0.7.5
  • xen-kmp-default >= 4.2.2_04_3.0.76_0.11-0.7.5
  • xen-kmp-pae >= 4.2.2_04_3.0.76_0.11-0.7.5
  • xen-libs >= 4.2.2_04-0.7.5
  • xen-libs-32bit >= 4.2.2_04-0.7.5
  • xen-tools >= 4.2.2_04-0.7.5
  • xen-tools-domU >= 4.2.2_04-0.7.5
Patchnames:
SUSE Linux Enterprise Server 11 SP3 GA xen
SUSE Linux Enterprise Server 11 SP4
  • xen >= 4.4.2_08-1.7
  • xen-doc-html >= 4.4.2_08-1.7
  • xen-kmp-default >= 4.4.2_08_3.0.101_63-1.7
  • xen-kmp-pae >= 4.4.2_08_3.0.101_63-1.7
  • xen-libs >= 4.4.2_08-1.7
  • xen-libs-32bit >= 4.4.2_08-1.7
  • xen-tools >= 4.4.2_08-1.7
  • xen-tools-domU >= 4.4.2_08-1.7
Patchnames:
SUSE Linux Enterprise Server 11 SP4 GA xen
SUSE Linux Enterprise Server 12
  • xen >= 4.4.1_06-2.2
  • xen-doc-html >= 4.4.1_06-2.2
  • xen-kmp-default >= 4.4.1_06_k3.12.28_4-2.2
  • xen-libs >= 4.4.1_06-2.2
  • xen-libs-32bit >= 4.4.1_06-2.2
  • xen-tools >= 4.4.1_06-2.2
  • xen-tools-domU >= 4.4.1_06-2.2
Patchnames:
SUSE Linux Enterprise Server 12 GA xen
SUSE Linux Enterprise Server 12 SP1
  • xen >= 4.5.1_12-2.3
  • xen-doc-html >= 4.5.1_12-2.3
  • xen-kmp-default >= 4.5.1_12_k3.12.49_11-2.3
  • xen-libs >= 4.5.1_12-2.3
  • xen-libs-32bit >= 4.5.1_12-2.3
  • xen-tools >= 4.5.1_12-2.3
  • xen-tools-domU >= 4.5.1_12-2.3
Patchnames:
SUSE Linux Enterprise Server 12 SP1 GA xen
SUSE Linux Enterprise Server 12 SP2
  • xen >= 4.7.0_12-23.4
  • xen-doc-html >= 4.7.0_12-23.4
  • xen-libs >= 4.7.0_12-23.4
  • xen-libs-32bit >= 4.7.0_12-23.4
  • xen-tools >= 4.7.0_12-23.4
  • xen-tools-domU >= 4.7.0_12-23.4
Patchnames:
SUSE Linux Enterprise Server 12 SP2 GA xen
SUSE Linux Enterprise Server 12 SP3
  • xen >= 4.9.0_08-2.2
  • xen-doc-html >= 4.9.0_08-2.2
  • xen-libs >= 4.9.0_08-2.2
  • xen-libs-32bit >= 4.9.0_08-2.2
  • xen-tools >= 4.9.0_08-2.2
  • xen-tools-domU >= 4.9.0_08-2.2
Patchnames:
SUSE Linux Enterprise Server 12 SP3 GA xen
SUSE Linux Enterprise Software Development Kit 11 SP4
  • xen-devel >= 4.4.2_08-1.7
Patchnames:
SUSE Linux Enterprise Software Development Kit 11 SP4 GA xen-devel
SUSE Linux Enterprise Software Development Kit 12
  • xen-devel >= 4.4.1_06-2.2
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 GA xen-devel
SUSE Linux Enterprise Software Development Kit 12 SP1
  • xen-devel >= 4.5.1_12-2.3
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 SP1 GA xen-devel
SUSE Linux Enterprise Software Development Kit 12 SP2
  • xen-devel >= 4.7.0_12-23.4
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 SP2 GA xen-devel
SUSE Linux Enterprise Software Development Kit 12 SP3
  • xen-devel >= 4.9.0_08-2.2
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 SP3 GA xen-devel
SUSE Studio Onsite Runner 1.2
  • kvm >= 0.12.5-1.20.2
Patchnames:
slestso12-kvm
openSUSE 11.4
  • libvirt >= 0.8.8-0.14.1
  • libvirt-client >= 0.8.8-0.14.1
  • libvirt-devel >= 0.8.8-0.14.1
  • libvirt-doc >= 0.8.8-0.14.1
  • libvirt-python >= 0.8.8-0.14.1
  • virt-utils >= 1.1.5-1.4.1
  • xen >= 4.0.3_01-0.2.1
  • xen-devel >= 4.0.3_01-0.2.1
  • xen-doc-html >= 4.0.3_01-0.2.1
  • xen-doc-pdf >= 4.0.3_01-0.2.1
  • xen-kmp-default >= 4.0.3_01_k2.6.37.6_0.11-0.2.1
  • xen-kmp-desktop >= 4.0.3_01_k2.6.37.6_0.11-0.2.1
  • xen-kmp-pae >= 4.0.3_01_k2.6.37.6_0.11-0.2.1
  • xen-libs >= 4.0.3_01-0.2.1
  • xen-tools >= 4.0.3_01-0.2.1
  • xen-tools-domU >= 4.0.3_01-0.2.1
openSUSE 11.4
  • qemu >= 0.14.0_rc1-1.6.1
SUSE Studio Extension for System z 1.2
  • kvm >= 0.12.5-1.20.2
studioonsite1.2.s390x
SAT Patch Nr: 5656
SUSE Studio Onsite 1.2 [Appliance - Studio]
  • qemu >= 0.10.1-0.5.7.1
studioonsite1.2.x86-64
SAT Patch Nr: 6852
SUSE Linux Enterprise Software Development Kit 11 SP1
SUSE Linux Enterprise Software Development Kit 11 SP2
  • qemu >= 0.10.1-0.5.5.1
sle11-sp1-sdk.x86-64
sle11-sp1-sdk.x86
sle11-sp2-sdk.x86
slepos11-sp1.x86
sle11-sp2-sdk.x86-64
slepos11-sp1.x86-64
sle11-sp1-sdk.x86
slepos11-sp1.x86
slepos11-sp1.x86-64
sle11-sp1-sdk.x86-64
SAT Patch Nr: 5803
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Server 11 SP1
  • kvm >= 0.12.5-1.20.1
sles11-sp1.x86
sled11-sp1.x86
sles11-sp1.x86-64
sled11-sp1.x86-64
SAT Patch Nr: 5655
openSUSE 11.4
  • kvm >= 0.14.0.0-1.14.2
SUSE Linux Enterprise Software Development Kit 11 SP1
  • libvirt-devel >= 0.7.6-1.29.2
  • xen-devel >= 4.0.3_21548_02-0.5.2
sles11-sp1-vmware.x86
sled11-sp1.x86
sled11-sp1.x86-64
sles11-sp1-vmware.x86-64
sle11-sp1-sdk.x86
sles11-sp1.x86-64
sles11-sp1.x86
sle11-sp1-sdk.x86-64
SAT Patch Nr: 5796
SUSE Linux Enterprise Desktop 11 SP1
  • libvirt >= 0.7.6-1.29.2
  • libvirt-doc >= 0.7.6-1.29.2
  • libvirt-python >= 0.7.6-1.29.2
  • virt-utils >= 1.1.3-1.5.1
  • xen >= 4.0.3_21548_02-0.5.2
  • xen-kmp-default >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2
  • xen-kmp-pae >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2
  • xen-libs >= 4.0.3_21548_02-0.5.2
  • xen-tools >= 4.0.3_21548_02-0.5.2
  • xen-tools-domU >= 4.0.3_21548_02-0.5.2
sles11-sp1-vmware.x86
sled11-sp1.x86
sled11-sp1.x86-64
sles11-sp1-vmware.x86-64
sle11-sp1-sdk.x86
sles11-sp1.x86-64
sles11-sp1.x86
sle11-sp1-sdk.x86-64
SAT Patch Nr: 5796
SUSE Linux Enterprise Desktop 11 SP1
  • libvirt >= 0.7.6-1.29.2
  • libvirt-doc >= 0.7.6-1.29.2
  • libvirt-python >= 0.7.6-1.29.2
  • virt-utils >= 1.1.3-1.5.1
  • xen >= 4.0.3_21548_02-0.5.2
  • xen-kmp-default >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2
  • xen-libs >= 4.0.3_21548_02-0.5.2
  • xen-tools >= 4.0.3_21548_02-0.5.2
  • xen-tools-domU >= 4.0.3_21548_02-0.5.2
sles11-sp1-vmware.x86
sled11-sp1.x86
sled11-sp1.x86-64
sles11-sp1-vmware.x86-64
sle11-sp1-sdk.x86
sles11-sp1.x86-64
sles11-sp1.x86
sle11-sp1-sdk.x86-64
SAT Patch Nr: 5796
SUSE Linux Enterprise Server 11 SP1
  • libvirt >= 0.7.6-1.29.2
  • libvirt-doc >= 0.7.6-1.29.2
  • libvirt-python >= 0.7.6-1.29.2
  • virt-utils >= 1.1.3-1.5.1
  • xen >= 4.0.3_21548_02-0.5.2
  • xen-doc-html >= 4.0.3_21548_02-0.5.2
  • xen-doc-pdf >= 4.0.3_21548_02-0.5.2
  • xen-kmp-default >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2
  • xen-kmp-trace >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2
  • xen-libs >= 4.0.3_21548_02-0.5.2
  • xen-tools >= 4.0.3_21548_02-0.5.2
  • xen-tools-domU >= 4.0.3_21548_02-0.5.2
sles11-sp1-vmware.x86
sled11-sp1.x86
sled11-sp1.x86-64
sles11-sp1-vmware.x86-64
sle11-sp1-sdk.x86
sles11-sp1.x86-64
sles11-sp1.x86
sle11-sp1-sdk.x86-64
SAT Patch Nr: 5796
SUSE Linux Enterprise Server 11 SP1 for VMware
SUSE Linux Enterprise Server 11 SP2
  • xen-kmp-trace >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2
sles11-sp1-vmware.x86
sled11-sp1.x86
sled11-sp1.x86-64
sles11-sp1-vmware.x86-64
sle11-sp1-sdk.x86
sles11-sp1.x86-64
sles11-sp1.x86
sle11-sp1-sdk.x86-64
SAT Patch Nr: 5796
SUSE Linux Enterprise Server 11 SP1
  • libvirt >= 0.7.6-1.29.2
  • libvirt-doc >= 0.7.6-1.29.2
  • libvirt-python >= 0.7.6-1.29.2
  • virt-utils >= 1.1.3-1.5.1
  • xen >= 4.0.3_21548_02-0.5.2
  • xen-doc-html >= 4.0.3_21548_02-0.5.2
  • xen-doc-pdf >= 4.0.3_21548_02-0.5.2
  • xen-kmp-default >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2
  • xen-kmp-pae >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2
  • xen-kmp-trace >= 4.0.3_21548_02_2.6.32.54_0.3-0.5.2
  • xen-libs >= 4.0.3_21548_02-0.5.2
  • xen-tools >= 4.0.3_21548_02-0.5.2
  • xen-tools-domU >= 4.0.3_21548_02-0.5.2
sles11-sp1-vmware.x86
sled11-sp1.x86
sled11-sp1.x86-64
sles11-sp1-vmware.x86-64
sle11-sp1-sdk.x86
sles11-sp1.x86-64
sles11-sp1.x86
sle11-sp1-sdk.x86-64
SAT Patch Nr: 5796
openSUSE 11.4
  • kvm >= 0.14.0.0-1.14.2
  • kvm-debuginfo >= 0.14.0.0-1.14.2
  • kvm-debugsource >= 0.14.0.0-1.14.2
  • libvirt >= 0.8.8-0.14.1
  • libvirt-client >= 0.8.8-0.14.1
  • libvirt-client-debuginfo >= 0.8.8-0.14.1
  • libvirt-debuginfo >= 0.8.8-0.14.1
  • libvirt-debugsource >= 0.8.8-0.14.1
  • libvirt-devel >= 0.8.8-0.14.1
  • libvirt-doc >= 0.8.8-0.14.1
  • libvirt-python >= 0.8.8-0.14.1
  • libvirt-python-debuginfo >= 0.8.8-0.14.1
  • qemu >= 0.14.0_rc1-1.6.1
  • qemu-debuginfo >= 0.14.0_rc1-1.6.1
  • qemu-debugsource >= 0.14.0_rc1-1.6.1
  • virt-utils >= 1.1.5-1.4.1
  • xen >= 4.0.3_04-42.4
  • xen-debugsource >= 4.0.3_04-42.4
  • xen-devel >= 4.0.3_04-42.4
  • xen-doc-html >= 4.0.3_04-42.4
  • xen-doc-pdf >= 4.0.3_04-42.4
  • xen-kmp-default >= 4.0.3_04_k2.6.37.6_0.20-42.4
  • xen-kmp-default-debuginfo >= 4.0.3_04_k2.6.37.6_0.20-42.4
  • xen-kmp-desktop >= 4.0.3_04_k2.6.37.6_0.20-42.4
  • xen-kmp-desktop-debuginfo >= 4.0.3_04_k2.6.37.6_0.20-42.4
  • xen-kmp-pae >= 4.0.3_04_k2.6.37.6_0.20-42.4
  • xen-kmp-pae-debuginfo >= 4.0.3_04_k2.6.37.6_0.20-42.4
  • xen-libs >= 4.0.3_04-42.4
  • xen-libs-debuginfo >= 4.0.3_04-42.4
  • xen-tools >= 4.0.3_04-42.4
  • xen-tools-debuginfo >= 4.0.3_04-42.4
  • xen-tools-domU >= 4.0.3_04-42.4
  • xen-tools-domU-debuginfo >= 4.0.3_04-42.4
Patchnames:
kvm
libvirt
openSUSE-2012-404
qemu
openSUSE Leap 42.1
  • xen >= 4.5.1_10-1.4
  • xen-doc-html >= 4.5.1_10-1.4
  • xen-kmp-default >= 4.5.1_10_k4.1.12_1-1.4
  • xen-libs >= 4.5.1_10-1.4
  • xen-tools >= 4.5.1_10-1.4
  • xen-tools-domU >= 4.5.1_10-1.4
Patchnames:
openSUSE Leap 42.1 GA xen
openSUSE Leap 42.2
  • xen >= 4.7.0_12-1.6
  • xen-doc-html >= 4.7.0_12-1.6
  • xen-libs >= 4.7.0_12-1.6
  • xen-tools >= 4.7.0_12-1.6
  • xen-tools-domU >= 4.7.0_12-1.6
Patchnames:
openSUSE Leap 42.2 GA xen
openSUSE Leap 42.3
  • xen >= 4.9.0_08-2.1
  • xen-doc-html >= 4.9.0_08-2.1
  • xen-libs >= 4.9.0_08-2.1
  • xen-tools >= 4.9.0_08-2.1
  • xen-tools-domU >= 4.9.0_08-2.1
Patchnames:
openSUSE Leap 42.3 GA xen
openSUSE Tumbleweed
  • xen >= 4.7.0_12-1.3
  • xen-devel >= 4.7.0_12-1.3
  • xen-doc-html >= 4.7.0_12-1.3
  • xen-libs >= 4.7.0_12-1.3
  • xen-libs-32bit >= 4.7.0_12-1.3
  • xen-tools >= 4.7.0_12-1.3
  • xen-tools-domU >= 4.7.0_12-1.3
Patchnames:
openSUSE Tumbleweed GA xen