Upstream information

CVE-2012-5525 at MITRE

Description

The get_page_from_gfn hypercall function in Xen 4.2 allows local PV guest OS administrators to cause a denial of service (crash) via a crafted GFN that triggers a buffer over-read.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
  National Vulnerability Database
Base Score 4.7
Vector AV:L/AC:M/Au:N/C:N/I:N/A:C
Access Vector Local
Access Complexity Medium
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Complete
SUSE Bugzilla entry: 789952 [RESOLVED / UPSTREAM]

No SUSE Security Announcements cross referenced.

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Desktop 12
  • xen >= 4.4.1_06-2.2
  • xen-kmp-default >= 4.4.1_06_k3.12.28_4-2.2
  • xen-libs >= 4.4.1_06-2.2
  • xen-libs-32bit >= 4.4.1_06-2.2
Patchnames:
SUSE Linux Enterprise Desktop 12 GA xen
SUSE Linux Enterprise Desktop 12 SP1
  • xen >= 4.5.1_12-2.3
  • xen-kmp-default >= 4.5.1_12_k3.12.49_11-2.3
  • xen-libs >= 4.5.1_12-2.3
  • xen-libs-32bit >= 4.5.1_12-2.3
Patchnames:
SUSE Linux Enterprise Desktop 12 SP1 GA xen
SUSE Linux Enterprise Desktop 12 SP2
  • xen >= 4.7.0_12-23.4
  • xen-libs >= 4.7.0_12-23.4
  • xen-libs-32bit >= 4.7.0_12-23.4
Patchnames:
SUSE Linux Enterprise Desktop 12 SP2 GA xen
SUSE Linux Enterprise Desktop 12 SP3
  • xen >= 4.9.0_08-2.2
  • xen-libs >= 4.9.0_08-2.2
  • xen-libs-32bit >= 4.9.0_08-2.2
Patchnames:
SUSE Linux Enterprise Desktop 12 SP3 GA xen
SUSE Linux Enterprise Server 11 SP3
  • xen >= 4.2.2_04-0.7.5
  • xen-doc-html >= 4.2.2_04-0.7.5
  • xen-doc-pdf >= 4.2.2_04-0.7.5
  • xen-kmp-default >= 4.2.2_04_3.0.76_0.11-0.7.5
  • xen-kmp-pae >= 4.2.2_04_3.0.76_0.11-0.7.5
  • xen-libs >= 4.2.2_04-0.7.5
  • xen-libs-32bit >= 4.2.2_04-0.7.5
  • xen-tools >= 4.2.2_04-0.7.5
  • xen-tools-domU >= 4.2.2_04-0.7.5
Patchnames:
SUSE Linux Enterprise Server 11 SP3 GA xen
SUSE Linux Enterprise Server 11 SP4
  • xen >= 4.4.2_08-1.7
  • xen-doc-html >= 4.4.2_08-1.7
  • xen-kmp-default >= 4.4.2_08_3.0.101_63-1.7
  • xen-kmp-pae >= 4.4.2_08_3.0.101_63-1.7
  • xen-libs >= 4.4.2_08-1.7
  • xen-libs-32bit >= 4.4.2_08-1.7
  • xen-tools >= 4.4.2_08-1.7
  • xen-tools-domU >= 4.4.2_08-1.7
Patchnames:
SUSE Linux Enterprise Server 11 SP4 GA xen
SUSE Linux Enterprise Server 12
  • xen >= 4.4.1_06-2.2
  • xen-doc-html >= 4.4.1_06-2.2
  • xen-kmp-default >= 4.4.1_06_k3.12.28_4-2.2
  • xen-libs >= 4.4.1_06-2.2
  • xen-libs-32bit >= 4.4.1_06-2.2
  • xen-tools >= 4.4.1_06-2.2
  • xen-tools-domU >= 4.4.1_06-2.2
Patchnames:
SUSE Linux Enterprise Server 12 GA xen
SUSE Linux Enterprise Server 12 SP1
  • xen >= 4.5.1_12-2.3
  • xen-doc-html >= 4.5.1_12-2.3
  • xen-kmp-default >= 4.5.1_12_k3.12.49_11-2.3
  • xen-libs >= 4.5.1_12-2.3
  • xen-libs-32bit >= 4.5.1_12-2.3
  • xen-tools >= 4.5.1_12-2.3
  • xen-tools-domU >= 4.5.1_12-2.3
Patchnames:
SUSE Linux Enterprise Server 12 SP1 GA xen
SUSE Linux Enterprise Server 12 SP2
  • xen >= 4.7.0_12-23.4
  • xen-doc-html >= 4.7.0_12-23.4
  • xen-libs >= 4.7.0_12-23.4
  • xen-libs-32bit >= 4.7.0_12-23.4
  • xen-tools >= 4.7.0_12-23.4
  • xen-tools-domU >= 4.7.0_12-23.4
Patchnames:
SUSE Linux Enterprise Server 12 SP2 GA xen
SUSE Linux Enterprise Server 12 SP3
  • xen >= 4.9.0_08-2.2
  • xen-doc-html >= 4.9.0_08-2.2
  • xen-libs >= 4.9.0_08-2.2
  • xen-libs-32bit >= 4.9.0_08-2.2
  • xen-tools >= 4.9.0_08-2.2
  • xen-tools-domU >= 4.9.0_08-2.2
Patchnames:
SUSE Linux Enterprise Server 12 SP3 GA xen
SUSE Linux Enterprise Software Development Kit 11 SP4
  • xen-devel >= 4.4.2_08-1.7
Patchnames:
SUSE Linux Enterprise Software Development Kit 11 SP4 GA xen-devel
SUSE Linux Enterprise Software Development Kit 12
  • xen-devel >= 4.4.1_06-2.2
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 GA xen-devel
SUSE Linux Enterprise Software Development Kit 12 SP1
  • xen-devel >= 4.5.1_12-2.3
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 SP1 GA xen-devel
SUSE Linux Enterprise Software Development Kit 12 SP2
  • xen-devel >= 4.7.0_12-23.4
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 SP2 GA xen-devel
SUSE Linux Enterprise Software Development Kit 12 SP3
  • xen-devel >= 4.9.0_08-2.2
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 SP3 GA xen-devel
SUSE Linux Enterprise Desktop 10 SP4 for x86
  • xen >= 3.2.3_17040_44-0.7.1
  • xen-devel >= 3.2.3_17040_44-0.7.1
  • xen-doc-html >= 3.2.3_17040_44-0.7.1
  • xen-doc-pdf >= 3.2.3_17040_44-0.7.1
  • xen-doc-ps >= 3.2.3_17040_44-0.7.1
  • xen-kmp-bigsmp >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-default >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-smp >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-libs >= 3.2.3_17040_44-0.7.1
  • xen-tools >= 3.2.3_17040_44-0.7.1
  • xen-tools-domU >= 3.2.3_17040_44-0.7.1
  • xen-tools-ioemu >= 3.2.3_17040_44-0.7.1
sles10-sp4.x86-64
sles10-sp4.x86
sles10-sp4-debuginfo.x86
sle10-sp4-sdk.x86
sle10-sp4-sdk.x86-64
sles10-sp4-debuginfo.x86-64
sled10-sp4.x86-64
sled10-sp4.x86
ZYPP Patch Nr: 8379
SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T
  • xen >= 3.2.3_17040_44-0.7.1
  • xen-devel >= 3.2.3_17040_44-0.7.1
  • xen-doc-html >= 3.2.3_17040_44-0.7.1
  • xen-doc-pdf >= 3.2.3_17040_44-0.7.1
  • xen-doc-ps >= 3.2.3_17040_44-0.7.1
  • xen-kmp-default >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-smp >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-libs >= 3.2.3_17040_44-0.7.1
  • xen-libs-32bit >= 3.2.3_17040_44-0.7.1
  • xen-tools >= 3.2.3_17040_44-0.7.1
  • xen-tools-domU >= 3.2.3_17040_44-0.7.1
  • xen-tools-ioemu >= 3.2.3_17040_44-0.7.1
sles10-sp4.x86-64
sles10-sp4.x86
sles10-sp4-debuginfo.x86
sle10-sp4-sdk.x86
sle10-sp4-sdk.x86-64
sles10-sp4-debuginfo.x86-64
sled10-sp4.x86-64
sled10-sp4.x86
ZYPP Patch Nr: 8379
SLE SDK 10 SP4 for x86
  • xen >= 3.2.3_17040_44-0.7.1
  • xen-devel >= 3.2.3_17040_44-0.7.1
  • xen-kmp-debug >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-kdump >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-libs >= 3.2.3_17040_44-0.7.1
  • xen-tools >= 3.2.3_17040_44-0.7.1
  • xen-tools-ioemu >= 3.2.3_17040_44-0.7.1
sles10-sp4.x86-64
sles10-sp4.x86
sles10-sp4-debuginfo.x86
sle10-sp4-sdk.x86
sle10-sp4-sdk.x86-64
sles10-sp4-debuginfo.x86-64
sled10-sp4.x86-64
sled10-sp4.x86
ZYPP Patch Nr: 8379
SLE SDK 10 SP4 for X86-64
  • xen >= 3.2.3_17040_44-0.7.1
  • xen-devel >= 3.2.3_17040_44-0.7.1
  • xen-kmp-debug >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-kdump >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-libs >= 3.2.3_17040_44-0.7.1
  • xen-libs-32bit >= 3.2.3_17040_44-0.7.1
  • xen-tools >= 3.2.3_17040_44-0.7.1
  • xen-tools-ioemu >= 3.2.3_17040_44-0.7.1
sles10-sp4.x86-64
sles10-sp4.x86
sles10-sp4-debuginfo.x86
sle10-sp4-sdk.x86
sle10-sp4-sdk.x86-64
sles10-sp4-debuginfo.x86-64
sled10-sp4.x86-64
sled10-sp4.x86
ZYPP Patch Nr: 8379
SUSE Linux Enterprise Server 10 SP4 for x86
  • xen >= 3.2.3_17040_44-0.7.1
  • xen-devel >= 3.2.3_17040_44-0.7.1
  • xen-doc-html >= 3.2.3_17040_44-0.7.1
  • xen-doc-pdf >= 3.2.3_17040_44-0.7.1
  • xen-doc-ps >= 3.2.3_17040_44-0.7.1
  • xen-kmp-bigsmp >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-debug >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-default >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-kdump >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-kdumppae >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-smp >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-vmi >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-vmipae >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-libs >= 3.2.3_17040_44-0.7.1
  • xen-tools >= 3.2.3_17040_44-0.7.1
  • xen-tools-domU >= 3.2.3_17040_44-0.7.1
  • xen-tools-ioemu >= 3.2.3_17040_44-0.7.1
sles10-sp4.x86-64
sles10-sp4.x86
sles10-sp4-debuginfo.x86
sle10-sp4-sdk.x86
sle10-sp4-sdk.x86-64
sles10-sp4-debuginfo.x86-64
sled10-sp4.x86-64
sled10-sp4.x86
ZYPP Patch Nr: 8379
SUSE Linux Enterprise Server 10 SP4 for AMD64 and Intel EM64T
  • xen >= 3.2.3_17040_44-0.7.1
  • xen-devel >= 3.2.3_17040_44-0.7.1
  • xen-doc-html >= 3.2.3_17040_44-0.7.1
  • xen-doc-pdf >= 3.2.3_17040_44-0.7.1
  • xen-doc-ps >= 3.2.3_17040_44-0.7.1
  • xen-kmp-debug >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-default >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-kdump >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-kmp-smp >= 3.2.3_17040_44_2.6.16.60_0.99.13-0.7.1
  • xen-libs >= 3.2.3_17040_44-0.7.1
  • xen-libs-32bit >= 3.2.3_17040_44-0.7.1
  • xen-tools >= 3.2.3_17040_44-0.7.1
  • xen-tools-domU >= 3.2.3_17040_44-0.7.1
  • xen-tools-ioemu >= 3.2.3_17040_44-0.7.1
sles10-sp4.x86-64
sles10-sp4.x86
sles10-sp4-debuginfo.x86
sle10-sp4-sdk.x86
sle10-sp4-sdk.x86-64
sles10-sp4-debuginfo.x86-64
sled10-sp4.x86-64
sled10-sp4.x86
ZYPP Patch Nr: 8379
SUSE Linux Enterprise Software Development Kit 11 SP2
  • xen-devel >= 4.1.3_06-0.7.1
sles11-sp2.x86-64
sle11-sp2-sdk.x86-64
sles11-sp2-vmware.x86-64
sled11-sp2.x86-64
SAT Patch Nr: 7133
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Server 11 SP2
  • xen >= 4.1.3_06-0.7.1
  • xen-doc-html >= 4.1.3_06-0.7.1
  • xen-doc-pdf >= 4.1.3_06-0.7.1
  • xen-kmp-default >= 4.1.3_06_3.0.51_0.7.9-0.7.1
  • xen-kmp-trace >= 4.1.3_06_3.0.51_0.7.9-0.7.1
  • xen-libs >= 4.1.3_06-0.7.1
  • xen-libs-32bit >= 4.1.3_06-0.7.1
  • xen-tools >= 4.1.3_06-0.7.1
  • xen-tools-domU >= 4.1.3_06-0.7.1
sles11-sp2.x86-64
sle11-sp2-sdk.x86-64
sles11-sp2-vmware.x86-64
sled11-sp2.x86-64
SAT Patch Nr: 7133
SUSE Linux Enterprise Server 11 SP2 for VMware
  • xen-kmp-trace >= 4.1.3_06_3.0.51_0.7.9-0.7.1
sles11-sp2.x86-64
sle11-sp2-sdk.x86-64
sles11-sp2-vmware.x86-64
sled11-sp2.x86-64
SAT Patch Nr: 7133
openSUSE Leap 42.1
  • xen >= 4.5.1_10-1.4
  • xen-doc-html >= 4.5.1_10-1.4
  • xen-kmp-default >= 4.5.1_10_k4.1.12_1-1.4
  • xen-libs >= 4.5.1_10-1.4
  • xen-tools >= 4.5.1_10-1.4
  • xen-tools-domU >= 4.5.1_10-1.4
Patchnames:
openSUSE Leap 42.1 GA xen
openSUSE Leap 42.2
  • xen >= 4.7.0_12-1.6
  • xen-doc-html >= 4.7.0_12-1.6
  • xen-libs >= 4.7.0_12-1.6
  • xen-tools >= 4.7.0_12-1.6
  • xen-tools-domU >= 4.7.0_12-1.6
Patchnames:
openSUSE Leap 42.2 GA xen
openSUSE Leap 42.3
  • xen >= 4.9.0_08-2.1
  • xen-doc-html >= 4.9.0_08-2.1
  • xen-libs >= 4.9.0_08-2.1
  • xen-tools >= 4.9.0_08-2.1
  • xen-tools-domU >= 4.9.0_08-2.1
Patchnames:
openSUSE Leap 42.3 GA xen
openSUSE Tumbleweed
  • xen >= 4.7.0_12-1.3
  • xen-devel >= 4.7.0_12-1.3
  • xen-doc-html >= 4.7.0_12-1.3
  • xen-libs >= 4.7.0_12-1.3
  • xen-libs-32bit >= 4.7.0_12-1.3
  • xen-tools >= 4.7.0_12-1.3
  • xen-tools-domU >= 4.7.0_12-1.3
Patchnames:
openSUSE Tumbleweed GA xen