CVE-2013-1919

Upstream information

CVE-2013-1919 at MITRE

Description

Xen 4.2.x and 4.1.x does not properly restrict access to IRQs, which allows local stub domain clients to gain access to IRQs and cause a denial of service via vectors related to "passed-through IRQs or PCI devices."

---

SUSE information

CVSS v2 Scores

	National Vulnerability Database
Base Score	4.68
Vector	AV:L/AC:M/Au:N/C:N/I:N/A:C
Access Vector	Local
Access Complexity	Medium
Authentication	None
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	Complete

SUSE Bugzilla entries: 813673 [RESOLVED / FIXED], 813675 [RESOLVED / FIXED], 840592 [RESOLVED / FIXED]

SUSE Security Advisories:

• SUSE-SU-2013:1075-1, published Tue, 25 Jun 2013 19:04:17 +0200 (CEST)
• SUSE-SU-2014:0446-1, published Tue, 25 Mar 2014 23:04:15 +0100 (CET)
• openSUSE-SU-2013:0912-1, published Mon, 10 Jun 2013 17:17:25 +0200 (CEST)
• openSUSE-SU-2013:1392-1, published Fri, 30 Aug 2013 16:04:11 +0200 (CEST)
• openSUSE-SU-2013:1404-1, published Wed, 4 Sep 2013 15:04:10 +0200 (CEST)

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise Desktop 11 SP2	xen >= 4.1.5_02-0.5.1 xen-doc-html >= 4.1.5_02-0.5.1 xen-doc-pdf >= 4.1.5_02-0.5.1 xen-kmp-default >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-kmp-pae >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-kmp-trace >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-libs >= 4.1.5_02-0.5.1 xen-libs-32bit >= 4.1.5_02-0.5.1 xen-tools >= 4.1.5_02-0.5.1 xen-tools-domU >= 4.1.5_02-0.5.1	Patchnames: sledsp2-xen-201305
SUSE Linux Enterprise Server 11 SP1-LTSS	xen >= 4.0.3_21548_16-0.5.1 xen-doc-html >= 4.0.3_21548_16-0.5.1 xen-doc-pdf >= 4.0.3_21548_16-0.5.1 xen-kmp-default >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1 xen-kmp-pae >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1 xen-kmp-trace >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1 xen-libs >= 4.0.3_21548_16-0.5.1 xen-tools >= 4.0.3_21548_16-0.5.1 xen-tools-domU >= 4.0.3_21548_16-0.5.1	Patchnames: slessp1-xen-201402
SUSE Linux Enterprise Server 11 SP2	xen >= 4.1.5_02-0.5.1 xen-doc-html >= 4.1.5_02-0.5.1 xen-doc-pdf >= 4.1.5_02-0.5.1 xen-kmp-default >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-kmp-pae >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-kmp-trace >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-libs >= 4.1.5_02-0.5.1 xen-libs-32bit >= 4.1.5_02-0.5.1 xen-tools >= 4.1.5_02-0.5.1 xen-tools-domU >= 4.1.5_02-0.5.1	Patchnames: slessp2-xen-201305
SUSE Linux Enterprise Server for VMWare 11 SP2	xen >= 4.1.5_02-0.5.1 xen-doc-html >= 4.1.5_02-0.5.1 xen-doc-pdf >= 4.1.5_02-0.5.1 xen-kmp-default >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-kmp-pae >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-kmp-trace >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-libs >= 4.1.5_02-0.5.1 xen-libs-32bit >= 4.1.5_02-0.5.1 xen-tools >= 4.1.5_02-0.5.1 xen-tools-domU >= 4.1.5_02-0.5.1	Patchnames: slessp2-xen-201305
SUSE Linux Enterprise Software Development Kit 11 SP2	xen-devel >= 4.1.5_02-0.5.1	Patchnames: sdksp2-xen-201305
SUSE Linux Enterprise Software Development Kit 11 SP2	xen-devel >= 4.1.5_02-0.5.1	Builds SAT Patch Nr: 7798
SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Server 11 SP2	xen-kmp-default >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-kmp-pae >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-kmp-trace >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-libs >= 4.1.5_02-0.5.1 xen-tools-domU >= 4.1.5_02-0.5.1	Builds SAT Patch Nr: 7798
SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Server 11 SP2	xen >= 4.1.5_02-0.5.1 xen-doc-html >= 4.1.5_02-0.5.1 xen-doc-pdf >= 4.1.5_02-0.5.1 xen-kmp-default >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-kmp-trace >= 4.1.5_02_3.0.74_0.6.10-0.5.1 xen-libs >= 4.1.5_02-0.5.1 xen-libs-32bit >= 4.1.5_02-0.5.1 xen-tools >= 4.1.5_02-0.5.1 xen-tools-domU >= 4.1.5_02-0.5.1	Builds SAT Patch Nr: 7798
SUSE Linux Enterprise Server 11 SP2 for VMware	xen-kmp-trace >= 4.1.5_02_3.0.74_0.6.10-0.5.1	Builds SAT Patch Nr: 7798
SUSE Linux Enterprise Server 11 SP1 LTSS	xen >= 4.0.3_21548_16-0.5.1 xen-doc-html >= 4.0.3_21548_16-0.5.1 xen-doc-pdf >= 4.0.3_21548_16-0.5.1 xen-kmp-default >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1 xen-kmp-pae >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1 xen-kmp-trace >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1 xen-libs >= 4.0.3_21548_16-0.5.1 xen-tools >= 4.0.3_21548_16-0.5.1 xen-tools-domU >= 4.0.3_21548_16-0.5.1	Builds SAT Patch Nr: 8963
SUSE Linux Enterprise Server 11 SP1 LTSS	xen >= 4.0.3_21548_16-0.5.1 xen-doc-html >= 4.0.3_21548_16-0.5.1 xen-doc-pdf >= 4.0.3_21548_16-0.5.1 xen-kmp-default >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1 xen-kmp-trace >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1 xen-libs >= 4.0.3_21548_16-0.5.1 xen-tools >= 4.0.3_21548_16-0.5.1 xen-tools-domU >= 4.0.3_21548_16-0.5.1	Builds SAT Patch Nr: 8963
openSUSE 12.3	xen >= 4.2.2_06-1.16.1 xen-debugsource >= 4.2.2_06-1.16.1 xen-devel >= 4.2.2_06-1.16.1 xen-doc-html >= 4.2.2_06-1.16.1 xen-doc-pdf >= 4.2.2_06-1.16.1 xen-kmp-default >= 4.2.2_06_k3.7.10_1.16-1.16.1 xen-kmp-default-debuginfo >= 4.2.2_06_k3.7.10_1.16-1.16.1 xen-kmp-desktop >= 4.2.2_06_k3.7.10_1.16-1.16.1 xen-kmp-desktop-debuginfo >= 4.2.2_06_k3.7.10_1.16-1.16.1 xen-kmp-pae >= 4.2.2_06_k3.7.10_1.16-1.16.1 xen-kmp-pae-debuginfo >= 4.2.2_06_k3.7.10_1.16-1.16.1 xen-libs >= 4.2.2_06-1.16.1 xen-libs-32bit >= 4.2.2_06-1.16.1 xen-libs-debuginfo >= 4.2.2_06-1.16.1 xen-libs-debuginfo-32bit >= 4.2.2_06-1.16.1 xen-tools >= 4.2.2_06-1.16.1 xen-tools-debuginfo >= 4.2.2_06-1.16.1 xen-tools-domU >= 4.2.2_06-1.16.1 xen-tools-domU-debuginfo >= 4.2.2_06-1.16.1	Patchnames: openSUSE-2013-677
openSUSE Evergreen 11.4	xen >= 4.0.3_05-53.1 xen-debugsource >= 4.0.3_05-53.1 xen-devel >= 4.0.3_05-53.1 xen-doc-html >= 4.0.3_05-53.1 xen-doc-pdf >= 4.0.3_05-53.1 xen-kmp-default >= 4.0.3_05_k2.6.37.6_24-53.1 xen-kmp-default-debuginfo >= 4.0.3_05_k2.6.37.6_24-53.1 xen-kmp-desktop >= 4.0.3_05_k2.6.37.6_24-53.1 xen-kmp-desktop-debuginfo >= 4.0.3_05_k2.6.37.6_24-53.1 xen-kmp-pae >= 4.0.3_05_k2.6.37.6_24-53.1 xen-kmp-pae-debuginfo >= 4.0.3_05_k2.6.37.6_24-53.1 xen-libs >= 4.0.3_05-53.1 xen-libs-debuginfo >= 4.0.3_05-53.1 xen-tools >= 4.0.3_05-53.1 xen-tools-debuginfo >= 4.0.3_05-53.1 xen-tools-domU >= 4.0.3_05-53.1 xen-tools-domU-debuginfo >= 4.0.3_05-53.1	Patchnames: 2013-70

List of products where fixes are in QA