CVE-2012-3494

Upstream information

CVE-2012-3494 at MITRE

Description

The set_debugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when running on x86-64 systems, allows local OS guest users to cause a denial of service (host crash) by writing to the reserved bits of the DR7 debug control register.

SUSE information

CVSS v2 Scores
	National Vulnerability Database
Base Score	2.11
Vector	AV:L/AC:L/Au:N/C:N/I:N/A:P
Access Vector	Local
Access Complexity	Low
Authentication	None
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	Partial

SUSE Bugzilla entry: 777090 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SU-2012:1129-1, published Thu, 6 Sep 2012 22:08:33 +0200 (CEST)
SUSE-SU-2012:1132-1, published Fri, 7 Sep 2012 15:08:36 +0200 (CEST)
SUSE-SU-2012:1133-1, published Fri, 7 Sep 2012 16:08:25 +0200 (CEST)
SUSE-SU-2012:1135-1, published Fri, 7 Sep 2012 20:08:40 +0200 (CEST)
SUSE-SU-2012:1162-1, published Thu, 13 Sep 2012 22:08:30 +0200 (CEST)
openSUSE-SU-2012:1172-1, published Fri, 14 Sep 2012 14:09:32 +0200 (CEST)
openSUSE-SU-2012:1174-1, published Fri, 14 Sep 2012 14:12:18 +0200 (CEST)
openSUSE-SU-2012:1176-1, published Fri, 14 Sep 2012 14:14:04 +0200 (CEST)
openSUSE-SU-2012:1572-1, published Mon, 26 Nov 2012 15:08:36 +0100 (CET)
openSUSE-SU-2012:1573-1, published Mon, 26 Nov 2012 15:13:15 +0100 (CET)

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise Desktop 11 SP2	`vm-install >= 0.5.12-0.5.1` `xen >= 4.1.3_02-0.5.1` `xen-doc-html >= 4.1.3_02-0.5.1` `xen-doc-pdf >= 4.1.3_02-0.5.1` `xen-kmp-default >= 4.1.3_02_3.0.38_0.5-0.5.1` `xen-kmp-trace >= 4.1.3_02_3.0.38_0.5-0.5.1` `xen-libs >= 4.1.3_02-0.5.1` `xen-libs-32bit >= 4.1.3_02-0.5.1` `xen-tools >= 4.1.3_02-0.5.1` `xen-tools-domU >= 4.1.3_02-0.5.1`	Patchnames: sledsp2-xen-201209
SUSE Linux Enterprise Server 11 SP1-LTSS	`xen >= 4.0.3_21548_10-0.5.1` `xen-doc-html >= 4.0.3_21548_10-0.5.1` `xen-doc-pdf >= 4.0.3_21548_10-0.5.1` `xen-kmp-default >= 4.0.3_21548_10_2.6.32.59_0.7-0.5.1` `xen-kmp-pae >= 4.0.3_21548_10_2.6.32.59_0.7-0.5.1` `xen-kmp-trace >= 4.0.3_21548_10_2.6.32.59_0.7-0.5.1` `xen-libs >= 4.0.3_21548_10-0.5.1` `xen-tools >= 4.0.3_21548_10-0.5.1` `xen-tools-domU >= 4.0.3_21548_10-0.5.1`	Patchnames: slessp1-xen-201209
SUSE Linux Enterprise Server 11 SP2	`vm-install >= 0.5.12-0.5.1` `xen >= 4.1.3_02-0.5.1` `xen-doc-html >= 4.1.3_02-0.5.1` `xen-doc-pdf >= 4.1.3_02-0.5.1` `xen-kmp-default >= 4.1.3_02_3.0.38_0.5-0.5.1` `xen-kmp-trace >= 4.1.3_02_3.0.38_0.5-0.5.1` `xen-libs >= 4.1.3_02-0.5.1` `xen-libs-32bit >= 4.1.3_02-0.5.1` `xen-tools >= 4.1.3_02-0.5.1` `xen-tools-domU >= 4.1.3_02-0.5.1`	Patchnames: slessp2-xen-201209
SUSE Linux Enterprise Server for VMWare 11 SP2	`vm-install >= 0.5.12-0.5.1` `xen >= 4.1.3_02-0.5.1` `xen-doc-html >= 4.1.3_02-0.5.1` `xen-doc-pdf >= 4.1.3_02-0.5.1` `xen-kmp-default >= 4.1.3_02_3.0.38_0.5-0.5.1` `xen-kmp-trace >= 4.1.3_02_3.0.38_0.5-0.5.1` `xen-libs >= 4.1.3_02-0.5.1` `xen-libs-32bit >= 4.1.3_02-0.5.1` `xen-tools >= 4.1.3_02-0.5.1` `xen-tools-domU >= 4.1.3_02-0.5.1`	Patchnames: slessp2-xen-201209
SUSE Linux Enterprise Software Development Kit 11 SP2	`xen-devel >= 4.1.3_02-0.5.1`	Patchnames: sdksp2-xen-201209
SUSE Linux Enterprise Software Development Kit 11 SP2	`xen-devel >= 4.1.3_02-0.5.1`	sle11-sp2-sdk.x86 sles11-sp2-vmware.x86-64 sles11-sp2.x86 sled11-sp2.x86 sle11-sp2-sdk.x86-64 sles11-sp2.x86-64 sles11-sp2-vmware.x86 sled11-sp2.x86-64 SAT Patch Nr: 6748
SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Server 11 SP2	`vm-install >= 0.5.12-0.5.3` `xen-kmp-default >= 4.1.3_02_3.0.38_0.5-0.5.1` `xen-kmp-trace >= 4.1.3_02_3.0.38_0.5-0.5.1` `xen-libs >= 4.1.3_02-0.5.1` `xen-tools-domU >= 4.1.3_02-0.5.1`	sle11-sp2-sdk.x86 sles11-sp2-vmware.x86-64 sles11-sp2.x86 sled11-sp2.x86 sle11-sp2-sdk.x86-64 sles11-sp2.x86-64 sles11-sp2-vmware.x86 sled11-sp2.x86-64 SAT Patch Nr: 6748
SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Server 11 SP2	`vm-install >= 0.5.12-0.5.1` `xen >= 4.1.3_02-0.5.1` `xen-doc-html >= 4.1.3_02-0.5.1` `xen-doc-pdf >= 4.1.3_02-0.5.1` `xen-kmp-default >= 4.1.3_02_3.0.38_0.5-0.5.1` `xen-kmp-trace >= 4.1.3_02_3.0.38_0.5-0.5.1` `xen-libs >= 4.1.3_02-0.5.1` `xen-libs-32bit >= 4.1.3_02-0.5.1` `xen-tools >= 4.1.3_02-0.5.1` `xen-tools-domU >= 4.1.3_02-0.5.1`	sle11-sp2-sdk.x86 sles11-sp2-vmware.x86-64 sles11-sp2.x86 sled11-sp2.x86 sle11-sp2-sdk.x86-64 sles11-sp2.x86-64 sles11-sp2-vmware.x86 sled11-sp2.x86-64 SAT Patch Nr: 6748
SUSE Linux Enterprise Server 11 SP2 for VMware	`xen-kmp-trace >= 4.1.3_02_3.0.38_0.5-0.5.1`	sle11-sp2-sdk.x86 sles11-sp2-vmware.x86-64 sles11-sp2.x86 sled11-sp2.x86 sle11-sp2-sdk.x86-64 sles11-sp2.x86-64 sles11-sp2-vmware.x86 sled11-sp2.x86-64 SAT Patch Nr: 6748
SUSE Linux Enterprise Server 11 SP1 LTSS	`xen >= 4.0.3_21548_10-0.5.1` `xen-doc-html >= 4.0.3_21548_10-0.5.1` `xen-doc-pdf >= 4.0.3_21548_10-0.5.1` `xen-kmp-default >= 4.0.3_21548_10_2.6.32.59_0.7-0.5.1` `xen-kmp-pae >= 4.0.3_21548_10_2.6.32.59_0.7-0.5.1` `xen-kmp-trace >= 4.0.3_21548_10_2.6.32.59_0.7-0.5.1` `xen-libs >= 4.0.3_21548_10-0.5.1` `xen-tools >= 4.0.3_21548_10-0.5.1` `xen-tools-domU >= 4.0.3_21548_10-0.5.1`	Builds SAT Patch Nr: 6746
SUSE Linux Enterprise Server 11 SP1 LTSS	`xen >= 4.0.3_21548_10-0.5.1` `xen-doc-html >= 4.0.3_21548_10-0.5.1` `xen-doc-pdf >= 4.0.3_21548_10-0.5.1` `xen-kmp-default >= 4.0.3_21548_10_2.6.32.59_0.7-0.5.1` `xen-kmp-trace >= 4.0.3_21548_10_2.6.32.59_0.7-0.5.1` `xen-libs >= 4.0.3_21548_10-0.5.1` `xen-tools >= 4.0.3_21548_10-0.5.1` `xen-tools-domU >= 4.0.3_21548_10-0.5.1`	Builds SAT Patch Nr: 6746
SUSE Linux Enterprise Server 10 SP2 for x86	`xen >= 3.2.0_16718_26-0.10.1` `xen-devel >= 3.2.0_16718_26-0.10.1` `xen-doc-html >= 3.2.0_16718_26-0.10.1` `xen-doc-pdf >= 3.2.0_16718_26-0.10.1` `xen-doc-ps >= 3.2.0_16718_26-0.10.1` `xen-kmp-bigsmp >= 3.2.0_16718_26_2.6.16.60_0.42.54.11-0.10.1` `xen-kmp-debug >= 3.2.0_16718_26_2.6.16.60_0.42.54.11-0.10.1` `xen-kmp-default >= 3.2.0_16718_26_2.6.16.60_0.42.54.11-0.10.1` `xen-kmp-kdump >= 3.2.0_16718_26_2.6.16.60_0.42.54.11-0.10.1` `xen-kmp-smp >= 3.2.0_16718_26_2.6.16.60_0.42.54.11-0.10.1` `xen-libs >= 3.2.0_16718_26-0.10.1` `xen-tools >= 3.2.0_16718_26-0.10.1` `xen-tools-domU >= 3.2.0_16718_26-0.10.1` `xen-tools-ioemu >= 3.2.0_16718_26-0.10.1`	sles10-sp2-debuginfo.x86 sles10-sp2-ltss.x86 sles10-sp2-debuginfo.x86-64 sles10-sp2-ltss.x86-64 ZYPP Patch Nr: 8260
SUSE Linux Enterprise Server 10 SP2 for AMD64 and Intel EM64T	`xen >= 3.2.0_16718_26-0.10.1` `xen-devel >= 3.2.0_16718_26-0.10.1` `xen-doc-html >= 3.2.0_16718_26-0.10.1` `xen-doc-pdf >= 3.2.0_16718_26-0.10.1` `xen-doc-ps >= 3.2.0_16718_26-0.10.1` `xen-kmp-debug >= 3.2.0_16718_26_2.6.16.60_0.42.54.11-0.10.1` `xen-kmp-default >= 3.2.0_16718_26_2.6.16.60_0.42.54.11-0.10.1` `xen-kmp-kdump >= 3.2.0_16718_26_2.6.16.60_0.42.54.11-0.10.1` `xen-kmp-smp >= 3.2.0_16718_26_2.6.16.60_0.42.54.11-0.10.1` `xen-libs >= 3.2.0_16718_26-0.10.1` `xen-libs-32bit >= 3.2.0_16718_26-0.10.1` `xen-tools >= 3.2.0_16718_26-0.10.1` `xen-tools-domU >= 3.2.0_16718_26-0.10.1` `xen-tools-ioemu >= 3.2.0_16718_26-0.10.1`	sles10-sp2-debuginfo.x86 sles10-sp2-ltss.x86 sles10-sp2-debuginfo.x86-64 sles10-sp2-ltss.x86-64 ZYPP Patch Nr: 8260
SUSE Linux Enterprise Desktop 10 SP4 for x86	`xen >= 3.2.3_17040_40-0.7.2` `xen-devel >= 3.2.3_17040_40-0.7.2` `xen-doc-html >= 3.2.3_17040_40-0.7.2` `xen-doc-pdf >= 3.2.3_17040_40-0.7.2` `xen-doc-ps >= 3.2.3_17040_40-0.7.2` `xen-kmp-bigsmp >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-default >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-smp >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-libs >= 3.2.3_17040_40-0.7.2` `xen-tools >= 3.2.3_17040_40-0.7.2` `xen-tools-domU >= 3.2.3_17040_40-0.7.2` `xen-tools-ioemu >= 3.2.3_17040_40-0.7.2`	sles10-sp4.x86 sles10-sp4-debuginfo.x86 sles10-sp4-debuginfo.x86-64 sle10-sp4-sdk.x86 sles10-sp4.x86-64 sled10-sp4.x86-64 sle10-sp4-sdk.x86-64 sled10-sp4.x86 ZYPP Patch Nr: 8268
SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T	`xen >= 3.2.3_17040_40-0.7.2` `xen-devel >= 3.2.3_17040_40-0.7.2` `xen-doc-html >= 3.2.3_17040_40-0.7.2` `xen-doc-pdf >= 3.2.3_17040_40-0.7.2` `xen-doc-ps >= 3.2.3_17040_40-0.7.2` `xen-kmp-default >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-smp >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-libs >= 3.2.3_17040_40-0.7.2` `xen-libs-32bit >= 3.2.3_17040_40-0.7.2` `xen-tools >= 3.2.3_17040_40-0.7.2` `xen-tools-domU >= 3.2.3_17040_40-0.7.2` `xen-tools-ioemu >= 3.2.3_17040_40-0.7.2`	sles10-sp4.x86 sles10-sp4-debuginfo.x86 sles10-sp4-debuginfo.x86-64 sle10-sp4-sdk.x86 sles10-sp4.x86-64 sled10-sp4.x86-64 sle10-sp4-sdk.x86-64 sled10-sp4.x86 ZYPP Patch Nr: 8268
SLE SDK 10 SP4 for x86	`xen >= 3.2.3_17040_40-0.7.2` `xen-devel >= 3.2.3_17040_40-0.7.2` `xen-kmp-debug >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-kdump >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-libs >= 3.2.3_17040_40-0.7.2` `xen-tools >= 3.2.3_17040_40-0.7.2` `xen-tools-ioemu >= 3.2.3_17040_40-0.7.2`	sles10-sp4.x86 sles10-sp4-debuginfo.x86 sles10-sp4-debuginfo.x86-64 sle10-sp4-sdk.x86 sles10-sp4.x86-64 sled10-sp4.x86-64 sle10-sp4-sdk.x86-64 sled10-sp4.x86 ZYPP Patch Nr: 8268
SLE SDK 10 SP4 for X86-64	`xen >= 3.2.3_17040_40-0.7.2` `xen-devel >= 3.2.3_17040_40-0.7.2` `xen-kmp-debug >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-kdump >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-libs >= 3.2.3_17040_40-0.7.2` `xen-libs-32bit >= 3.2.3_17040_40-0.7.2` `xen-tools >= 3.2.3_17040_40-0.7.2` `xen-tools-ioemu >= 3.2.3_17040_40-0.7.2`	sles10-sp4.x86 sles10-sp4-debuginfo.x86 sles10-sp4-debuginfo.x86-64 sle10-sp4-sdk.x86 sles10-sp4.x86-64 sled10-sp4.x86-64 sle10-sp4-sdk.x86-64 sled10-sp4.x86 ZYPP Patch Nr: 8268
SUSE Linux Enterprise Server 10 SP4 for x86	`xen >= 3.2.3_17040_40-0.7.2` `xen-devel >= 3.2.3_17040_40-0.7.2` `xen-doc-html >= 3.2.3_17040_40-0.7.2` `xen-doc-pdf >= 3.2.3_17040_40-0.7.2` `xen-doc-ps >= 3.2.3_17040_40-0.7.2` `xen-kmp-bigsmp >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-debug >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-default >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-kdump >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-kdumppae >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-smp >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-vmi >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-vmipae >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-libs >= 3.2.3_17040_40-0.7.2` `xen-tools >= 3.2.3_17040_40-0.7.2` `xen-tools-domU >= 3.2.3_17040_40-0.7.2` `xen-tools-ioemu >= 3.2.3_17040_40-0.7.2`	sles10-sp4.x86 sles10-sp4-debuginfo.x86 sles10-sp4-debuginfo.x86-64 sle10-sp4-sdk.x86 sles10-sp4.x86-64 sled10-sp4.x86-64 sle10-sp4-sdk.x86-64 sled10-sp4.x86 ZYPP Patch Nr: 8268
SUSE Linux Enterprise Server 10 SP4 for AMD64 and Intel EM64T	`xen >= 3.2.3_17040_40-0.7.2` `xen-devel >= 3.2.3_17040_40-0.7.2` `xen-doc-html >= 3.2.3_17040_40-0.7.2` `xen-doc-pdf >= 3.2.3_17040_40-0.7.2` `xen-doc-ps >= 3.2.3_17040_40-0.7.2` `xen-kmp-debug >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-default >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-kdump >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-kmp-smp >= 3.2.3_17040_40_2.6.16.60_0.97.32-0.7.2` `xen-libs >= 3.2.3_17040_40-0.7.2` `xen-libs-32bit >= 3.2.3_17040_40-0.7.2` `xen-tools >= 3.2.3_17040_40-0.7.2` `xen-tools-domU >= 3.2.3_17040_40-0.7.2` `xen-tools-ioemu >= 3.2.3_17040_40-0.7.2`	sles10-sp4.x86 sles10-sp4-debuginfo.x86 sles10-sp4-debuginfo.x86-64 sle10-sp4-sdk.x86 sles10-sp4.x86-64 sled10-sp4.x86-64 sle10-sp4-sdk.x86-64 sled10-sp4.x86 ZYPP Patch Nr: 8268
SUSE Linux Enterprise Server 10 SP3 LTSS for x86	`xen >= 3.2.3_17040_28-0.6.13.5` `xen-devel >= 3.2.3_17040_28-0.6.13.5` `xen-doc-html >= 3.2.3_17040_28-0.6.13.5` `xen-doc-pdf >= 3.2.3_17040_28-0.6.13.5` `xen-doc-ps >= 3.2.3_17040_28-0.6.13.5` `xen-kmp-bigsmp >= 3.2.3_17040_28_2.6.16.60_0.83.169-0.6.13.5` `xen-kmp-debug >= 3.2.3_17040_28_2.6.16.60_0.83.169-0.6.13.5` `xen-kmp-default >= 3.2.3_17040_28_2.6.16.60_0.83.169-0.6.13.5` `xen-kmp-kdump >= 3.2.3_17040_28_2.6.16.60_0.83.169-0.6.13.5` `xen-kmp-kdumppae >= 3.2.3_17040_28_2.6.16.60_0.83.169-0.6.13.5` `xen-kmp-smp >= 3.2.3_17040_28_2.6.16.60_0.83.169-0.6.13.5` `xen-kmp-vmi >= 3.2.3_17040_28_2.6.16.60_0.83.169-0.6.13.5` `xen-kmp-vmipae >= 3.2.3_17040_28_2.6.16.60_0.83.169-0.6.13.5` `xen-libs >= 3.2.3_17040_28-0.6.13.5` `xen-tools >= 3.2.3_17040_28-0.6.13.5` `xen-tools-domU >= 3.2.3_17040_28-0.6.13.5` `xen-tools-ioemu >= 3.2.3_17040_28-0.6.13.5`	sles10-sp3-ltss.x86-64 sles10-sp3-debuginfo.x86-64 sles10-sp3-ltss.x86 sles10-sp3-debuginfo.x86 ZYPP Patch Nr: 8270
SUSE Linux Enterprise Server 10 SP3 LTSS for AMD64 and Intel EM64T	`xen >= 3.2.3_17040_28-0.6.13.5` `xen-devel >= 3.2.3_17040_28-0.6.13.5` `xen-doc-html >= 3.2.3_17040_28-0.6.13.5` `xen-doc-pdf >= 3.2.3_17040_28-0.6.13.5` `xen-doc-ps >= 3.2.3_17040_28-0.6.13.5` `xen-kmp-debug >= 3.2.3_17040_28_2.6.16.60_0.83.169-0.6.13.5` `xen-kmp-default >= 3.2.3_17040_28_2.6.16.60_0.83.169-0.6.13.5` `xen-kmp-kdump >= 3.2.3_17040_28_2.6.16.60_0.83.169-0.6.13.5` `xen-kmp-smp >= 3.2.3_17040_28_2.6.16.60_0.83.169-0.6.13.5` `xen-libs >= 3.2.3_17040_28-0.6.13.5` `xen-libs-32bit >= 3.2.3_17040_28-0.6.13.5` `xen-tools >= 3.2.3_17040_28-0.6.13.5` `xen-tools-domU >= 3.2.3_17040_28-0.6.13.5` `xen-tools-ioemu >= 3.2.3_17040_28-0.6.13.5`	sles10-sp3-ltss.x86-64 sles10-sp3-debuginfo.x86-64 sles10-sp3-ltss.x86 sles10-sp3-debuginfo.x86 ZYPP Patch Nr: 8270
openSUSE 11.4	`xen >= 4.0.3_04-45.1` `xen-debugsource >= 4.0.3_04-45.1` `xen-devel >= 4.0.3_04-45.1` `xen-doc-html >= 4.0.3_04-45.1` `xen-doc-pdf >= 4.0.3_04-45.1` `xen-kmp-default >= 4.0.3_04_k2.6.37.6_0.20-45.1` `xen-kmp-default-debuginfo >= 4.0.3_04_k2.6.37.6_0.20-45.1` `xen-kmp-desktop >= 4.0.3_04_k2.6.37.6_0.20-45.1` `xen-kmp-desktop-debuginfo >= 4.0.3_04_k2.6.37.6_0.20-45.1` `xen-kmp-pae >= 4.0.3_04_k2.6.37.6_0.20-45.1` `xen-kmp-pae-debuginfo >= 4.0.3_04_k2.6.37.6_0.20-45.1` `xen-libs >= 4.0.3_04-45.1` `xen-libs-debuginfo >= 4.0.3_04-45.1` `xen-tools >= 4.0.3_04-45.1` `xen-tools-debuginfo >= 4.0.3_04-45.1` `xen-tools-domU >= 4.0.3_04-45.1` `xen-tools-domU-debuginfo >= 4.0.3_04-45.1`	Patchnames: openSUSE-2012-596

CVE-2012-3494

Common Vulnerabilities and Exposures

Upstream information

Description

SUSE information

List of released packages

Services