Upstream information

CVE-2013-0153 at MITRE

Description

The AMD IOMMU support in Xen 4.2.x, 4.1.x, 3.3, and other versions, when using AMD-Vi for PCI passthrough, uses the same interrupt remapping table for the host and all guests, which allows guests to cause a denial of service by injecting an interrupt into other guests.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 4.68
Vector AV:L/AC:M/Au:N/C:N/I:N/A:C
Access Vector Local
Access Complexity Medium
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Complete
SUSE Bugzilla entries: 800275 [RESOLVED / FIXED], 800802 [CLOSED / DUPLICATE], 840592 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Desktop 11 SP2
  • xen >= 4.1.4_02-0.5.1
  • xen-doc-html >= 4.1.4_02-0.5.1
  • xen-doc-pdf >= 4.1.4_02-0.5.1
  • xen-kmp-default >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-kmp-pae >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-kmp-trace >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-libs >= 4.1.4_02-0.5.1
  • xen-libs-32bit >= 4.1.4_02-0.5.1
  • xen-tools >= 4.1.4_02-0.5.1
  • xen-tools-domU >= 4.1.4_02-0.5.1
Patchnames:
sledsp2-xen
SUSE Linux Enterprise Server 11 SP1-LTSS
  • xen >= 4.0.3_21548_16-0.5.1
  • xen-doc-html >= 4.0.3_21548_16-0.5.1
  • xen-doc-pdf >= 4.0.3_21548_16-0.5.1
  • xen-kmp-default >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1
  • xen-kmp-pae >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1
  • xen-kmp-trace >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1
  • xen-libs >= 4.0.3_21548_16-0.5.1
  • xen-tools >= 4.0.3_21548_16-0.5.1
  • xen-tools-domU >= 4.0.3_21548_16-0.5.1
Patchnames:
slessp1-xen-201402
SUSE Linux Enterprise Server 11 SP2
  • xen >= 4.1.4_02-0.5.1
  • xen-devel >= 4.1.6_08-0.11.1
  • xen-doc-html >= 4.1.4_02-0.5.1
  • xen-doc-pdf >= 4.1.4_02-0.5.1
  • xen-kmp-default >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-kmp-pae >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-kmp-trace >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-libs >= 4.1.4_02-0.5.1
  • xen-libs-32bit >= 4.1.4_02-0.5.1
  • xen-tools >= 4.1.4_02-0.5.1
  • xen-tools-domU >= 4.1.4_02-0.5.1
Patchnames:
slessp2-xen
SUSE Linux Enterprise Server 12 SP2
  • xen >= 4.7.0_12-23.4
  • xen-debugsource >= 4.7.0_12-23.4
  • xen-doc-html >= 4.7.0_12-23.4
  • xen-libs >= 4.7.0_12-23.4
  • xen-libs-32bit >= 4.7.0_12-23.4
  • xen-libs-debuginfo >= 4.7.0_12-23.4
  • xen-libs-debuginfo-32bit >= 4.7.0_12-23.4
  • xen-tools >= 4.7.0_12-23.4
  • xen-tools-debuginfo >= 4.7.0_12-23.4
  • xen-tools-domU >= 4.7.0_12-23.4
  • xen-tools-domU-debuginfo >= 4.7.0_12-23.4
Patchnames:
SUSE Linux Enterprise Server 12 SP2 GA xen
SUSE Linux Enterprise Server for VMWare 11 SP2
  • xen >= 4.1.4_02-0.5.1
  • xen-devel >= 4.1.6_08-0.11.1
  • xen-doc-html >= 4.1.4_02-0.5.1
  • xen-doc-pdf >= 4.1.4_02-0.5.1
  • xen-kmp-default >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-kmp-pae >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-kmp-trace >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-libs >= 4.1.4_02-0.5.1
  • xen-libs-32bit >= 4.1.4_02-0.5.1
  • xen-tools >= 4.1.4_02-0.5.1
  • xen-tools-domU >= 4.1.4_02-0.5.1
Patchnames:
slessp2-xen
SUSE Linux Enterprise Software Development Kit 11 SP2
  • xen-devel >= 4.1.4_02-0.5.1
Patchnames:
sdksp2-xen
SUSE Linux Enterprise Software Development Kit 11 SP2
  • libvirt-devel >= 0.9.6-0.27.1
SAT Patch Nr: 7483
SUSE Linux Enterprise Software Development Kit 11 SP2
  • libvirt-devel >= 0.9.6-0.27.1
  • libvirt-devel-32bit >= 0.9.6-0.27.1
SAT Patch Nr: 7483
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Server 11 SP2
  • libvirt >= 0.9.6-0.27.1
  • libvirt-client >= 0.9.6-0.27.1
  • libvirt-doc >= 0.9.6-0.27.1
  • libvirt-python >= 0.9.6-0.27.1
SAT Patch Nr: 7483
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Server 11 SP2
  • libvirt >= 0.9.6-0.27.1
  • libvirt-client >= 0.9.6-0.27.1
  • libvirt-client-32bit >= 0.9.6-0.27.1
  • libvirt-doc >= 0.9.6-0.27.1
  • libvirt-python >= 0.9.6-0.27.1
SAT Patch Nr: 7483
SUSE Linux Enterprise Software Development Kit 11 SP2
  • xen-devel >= 4.1.4_02-0.5.1
Builds
SAT Patch Nr: 7492
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Server 11 SP2
  • xen-kmp-default >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-kmp-pae >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-kmp-trace >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-libs >= 4.1.4_02-0.5.1
  • xen-tools-domU >= 4.1.4_02-0.5.1
Builds
SAT Patch Nr: 7492
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Server 11 SP2
  • xen >= 4.1.4_02-0.5.1
  • xen-doc-html >= 4.1.4_02-0.5.1
  • xen-doc-pdf >= 4.1.4_02-0.5.1
  • xen-kmp-default >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-kmp-trace >= 4.1.4_02_3.0.58_0.6.6-0.5.1
  • xen-libs >= 4.1.4_02-0.5.1
  • xen-libs-32bit >= 4.1.4_02-0.5.1
  • xen-tools >= 4.1.4_02-0.5.1
  • xen-tools-domU >= 4.1.4_02-0.5.1
Builds
SAT Patch Nr: 7492
SUSE Linux Enterprise Server 11 SP2 for VMware
  • xen-kmp-trace >= 4.1.4_02_3.0.58_0.6.6-0.5.1
Builds
SAT Patch Nr: 7492
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Server 11 SP2
  • virt-utils >= 1.1.8-0.14.1
SAT Patch Nr: 7470
SUSE Linux Enterprise Server 11 SP1 LTSS
  • xen >= 4.0.3_21548_16-0.5.1
  • xen-doc-html >= 4.0.3_21548_16-0.5.1
  • xen-doc-pdf >= 4.0.3_21548_16-0.5.1
  • xen-kmp-default >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1
  • xen-kmp-pae >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1
  • xen-kmp-trace >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1
  • xen-libs >= 4.0.3_21548_16-0.5.1
  • xen-tools >= 4.0.3_21548_16-0.5.1
  • xen-tools-domU >= 4.0.3_21548_16-0.5.1
Builds
SAT Patch Nr: 8963
SUSE Linux Enterprise Server 11 SP1 LTSS
  • xen >= 4.0.3_21548_16-0.5.1
  • xen-doc-html >= 4.0.3_21548_16-0.5.1
  • xen-doc-pdf >= 4.0.3_21548_16-0.5.1
  • xen-kmp-default >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1
  • xen-kmp-trace >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1
  • xen-libs >= 4.0.3_21548_16-0.5.1
  • xen-tools >= 4.0.3_21548_16-0.5.1
  • xen-tools-domU >= 4.0.3_21548_16-0.5.1
Builds
SAT Patch Nr: 8963
openSUSE 13.2
  • xen >= 4.4.1_06-3.3
  • xen-doc-html >= 4.4.1_06-3.3
  • xen-kmp-default >= 4.4.1_06_k3.16.6_2-3.3
  • xen-kmp-desktop >= 4.4.1_06_k3.16.6_2-3.3
  • xen-libs >= 4.4.1_06-3.3
  • xen-tools >= 4.4.1_06-3.3
  • xen-tools-domU >= 4.4.1_06-3.3
Patchnames:
openSUSE 13.2 GA xen
openSUSE Evergreen 11.4
  • xen >= 4.0.3_05-53.1
  • xen-debugsource >= 4.0.3_05-53.1
  • xen-devel >= 4.0.3_05-53.1
  • xen-doc-html >= 4.0.3_05-53.1
  • xen-doc-pdf >= 4.0.3_05-53.1
  • xen-kmp-default >= 4.0.3_05_k2.6.37.6_24-53.1
  • xen-kmp-default-debuginfo >= 4.0.3_05_k2.6.37.6_24-53.1
  • xen-kmp-desktop >= 4.0.3_05_k2.6.37.6_24-53.1
  • xen-kmp-desktop-debuginfo >= 4.0.3_05_k2.6.37.6_24-53.1
  • xen-kmp-pae >= 4.0.3_05_k2.6.37.6_24-53.1
  • xen-kmp-pae-debuginfo >= 4.0.3_05_k2.6.37.6_24-53.1
  • xen-libs >= 4.0.3_05-53.1
  • xen-libs-debuginfo >= 4.0.3_05-53.1
  • xen-tools >= 4.0.3_05-53.1
  • xen-tools-debuginfo >= 4.0.3_05-53.1
  • xen-tools-domU >= 4.0.3_05-53.1
  • xen-tools-domU-debuginfo >= 4.0.3_05-53.1
Patchnames:
2013-70
openSUSE Leap 42.1
  • xen >= 4.5.1_10-1.4
  • xen-doc-html >= 4.5.1_10-1.4
  • xen-kmp-default >= 4.5.1_10_k4.1.12_1-1.4
  • xen-libs >= 4.5.1_10-1.4
  • xen-tools >= 4.5.1_10-1.4
  • xen-tools-domU >= 4.5.1_10-1.4
Patchnames:
openSUSE Leap 42.1 GA xen
openSUSE Leap 42.2
  • xen >= 4.7.0_12-1.6
  • xen-doc-html >= 4.7.0_12-1.6
  • xen-libs >= 4.7.0_12-1.6
  • xen-tools >= 4.7.0_12-1.6
  • xen-tools-domU >= 4.7.0_12-1.6
Patchnames:
openSUSE Leap 42.2 GA xen