CVE-2013-2212

Upstream information

CVE-2013-2212 at MITRE

Description

The vmx_set_uc_mode function in Xen 3.3 through 4.3, when disabling caches, allows local HVM guests with access to memory mapped I/O regions to cause a denial of service (CPU consumption and possibly hypervisor or guest kernel panic) via a crafted GFN range.

SUSE information

CVSS v2 Scores
	National Vulnerability Database
Base Score	5.69
Vector	AV:A/AC:M/Au:N/C:N/I:N/A:C
Access Vector	Adjacent Network
Access Complexity	Medium
Authentication	None
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	Complete

SUSE Bugzilla entries: 826718 [RESOLVED / DUPLICATE], 831120 [RESOLVED / FIXED], 846849 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SU-2014:0372-1, published Fri, 14 Mar 2014 00:04:13 +0100 (CET)
SUSE-SU-2014:0373-1, published Fri, 14 Mar 2014 00:06:40 +0100 (CET)
SUSE-SU-2014:0446-1, published Tue, 25 Mar 2014 23:04:15 +0100 (CET)
openSUSE-SU-2014:0482-1, published Fri, 4 Apr 2014 16:04:51 +0200 (CEST)
openSUSE-SU-2014:0483-1, published Fri, 4 Apr 2014 16:05:45 +0200 (CEST)

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise Desktop 11 SP3	`xen >= 4.2.4_02-0.7.1` `xen-doc-html >= 4.2.4_02-0.7.1` `xen-doc-pdf >= 4.2.4_02-0.7.1` `xen-kmp-default >= 4.2.4_02_3.0.101_0.15-0.7.1` `xen-kmp-pae >= 4.2.4_02_3.0.101_0.15-0.7.1` `xen-libs >= 4.2.4_02-0.7.1` `xen-libs-32bit >= 4.2.4_02-0.7.1` `xen-tools >= 4.2.4_02-0.7.1` `xen-tools-domU >= 4.2.4_02-0.7.1`	Patchnames: sledsp3-xen-201402
SUSE Linux Enterprise Server 11 SP1-LTSS	`xen >= 4.0.3_21548_16-0.5.1` `xen-doc-html >= 4.0.3_21548_16-0.5.1` `xen-doc-pdf >= 4.0.3_21548_16-0.5.1` `xen-kmp-default >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1` `xen-kmp-pae >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1` `xen-kmp-trace >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1` `xen-libs >= 4.0.3_21548_16-0.5.1` `xen-tools >= 4.0.3_21548_16-0.5.1` `xen-tools-domU >= 4.0.3_21548_16-0.5.1`	Patchnames: slessp1-xen-201402
SUSE Linux Enterprise Server 11 SP2-LTSS	`xen >= 4.1.6_06-0.5.1` `xen-devel >= 4.1.6_06-0.5.1` `xen-doc-html >= 4.1.6_06-0.5.1` `xen-doc-pdf >= 4.1.6_06-0.5.1` `xen-kmp-default >= 4.1.6_06_3.0.101_0.7.17-0.5.1` `xen-kmp-pae >= 4.1.6_06_3.0.101_0.7.17-0.5.1` `xen-kmp-trace >= 4.1.6_06_3.0.101_0.7.17-0.5.1` `xen-libs >= 4.1.6_06-0.5.1` `xen-libs-32bit >= 4.1.6_06-0.5.1` `xen-tools >= 4.1.6_06-0.5.1` `xen-tools-domU >= 4.1.6_06-0.5.1`	Patchnames: slessp2-xen-201402
SUSE Linux Enterprise Server 11 SP3	`xen >= 4.2.4_02-0.7.1` `xen-doc-html >= 4.2.4_02-0.7.1` `xen-doc-pdf >= 4.2.4_02-0.7.1` `xen-kmp-default >= 4.2.4_02_3.0.101_0.15-0.7.1` `xen-kmp-pae >= 4.2.4_02_3.0.101_0.15-0.7.1` `xen-libs >= 4.2.4_02-0.7.1` `xen-libs-32bit >= 4.2.4_02-0.7.1` `xen-tools >= 4.2.4_02-0.7.1` `xen-tools-domU >= 4.2.4_02-0.7.1`	Patchnames: slessp3-xen-201402
SUSE Linux Enterprise Server 11 SP4	`xen >= 4.4.2_08-1.7` `xen-doc-html >= 4.4.2_08-1.7` `xen-kmp-default >= 4.4.2_08_3.0.101_63-1.7` `xen-kmp-pae >= 4.4.2_08_3.0.101_63-1.7` `xen-libs >= 4.4.2_08-1.7` `xen-libs-32bit >= 4.4.2_08-1.7` `xen-tools >= 4.4.2_08-1.7` `xen-tools-domU >= 4.4.2_08-1.7`	Patchnames: SUSE Linux Enterprise Server 11 SP4 GA xen
SUSE Linux Enterprise Software Development Kit 11 SP3	`xen-devel >= 4.2.4_02-0.7.1`	Patchnames: sdksp3-xen-201402
SUSE Linux Enterprise Software Development Kit 11 SP4	`xen-devel >= 4.4.2_08-1.7`	Patchnames: SUSE Linux Enterprise Software Development Kit 11 SP4 GA xen-devel
SUSE Linux Enterprise Server 11 SP2 LTSS	`xen-kmp-default >= 4.1.6_06_3.0.101_0.7.17-0.5.1` `xen-kmp-pae >= 4.1.6_06_3.0.101_0.7.17-0.5.1` `xen-kmp-trace >= 4.1.6_06_3.0.101_0.7.17-0.5.1` `xen-libs >= 4.1.6_06-0.5.1` `xen-tools-domU >= 4.1.6_06-0.5.1`	Builds SAT Patch Nr: 8964
SUSE Linux Enterprise Server 11 SP2 LTSS	`xen >= 4.1.6_06-0.5.1` `xen-doc-html >= 4.1.6_06-0.5.1` `xen-doc-pdf >= 4.1.6_06-0.5.1` `xen-kmp-default >= 4.1.6_06_3.0.101_0.7.17-0.5.1` `xen-kmp-trace >= 4.1.6_06_3.0.101_0.7.17-0.5.1` `xen-libs >= 4.1.6_06-0.5.1` `xen-libs-32bit >= 4.1.6_06-0.5.1` `xen-tools >= 4.1.6_06-0.5.1` `xen-tools-domU >= 4.1.6_06-0.5.1`	Builds SAT Patch Nr: 8964
SUSE Linux Enterprise Software Development Kit 11 SP3	`xen-devel >= 4.2.4_02-0.7.1`	Builds SAT Patch Nr: 8973
SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 11 SP3	`xen-kmp-default >= 4.2.4_02_3.0.101_0.15-0.7.1` `xen-kmp-pae >= 4.2.4_02_3.0.101_0.15-0.7.1` `xen-libs >= 4.2.4_02-0.7.1` `xen-tools-domU >= 4.2.4_02-0.7.1`	Builds SAT Patch Nr: 8973
SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 11 SP3	`xen >= 4.2.4_02-0.7.1` `xen-doc-html >= 4.2.4_02-0.7.1` `xen-doc-pdf >= 4.2.4_02-0.7.1` `xen-kmp-default >= 4.2.4_02_3.0.101_0.15-0.7.1` `xen-libs >= 4.2.4_02-0.7.1` `xen-libs-32bit >= 4.2.4_02-0.7.1` `xen-tools >= 4.2.4_02-0.7.1` `xen-tools-domU >= 4.2.4_02-0.7.1`	Builds SAT Patch Nr: 8973
SUSE Linux Enterprise Server 11 SP1 LTSS	`xen >= 4.0.3_21548_16-0.5.1` `xen-doc-html >= 4.0.3_21548_16-0.5.1` `xen-doc-pdf >= 4.0.3_21548_16-0.5.1` `xen-kmp-default >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1` `xen-kmp-pae >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1` `xen-kmp-trace >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1` `xen-libs >= 4.0.3_21548_16-0.5.1` `xen-tools >= 4.0.3_21548_16-0.5.1` `xen-tools-domU >= 4.0.3_21548_16-0.5.1`	Builds SAT Patch Nr: 8963
SUSE Linux Enterprise Server 11 SP1 LTSS	`xen >= 4.0.3_21548_16-0.5.1` `xen-doc-html >= 4.0.3_21548_16-0.5.1` `xen-doc-pdf >= 4.0.3_21548_16-0.5.1` `xen-kmp-default >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1` `xen-kmp-trace >= 4.0.3_21548_16_2.6.32.59_0.9-0.5.1` `xen-libs >= 4.0.3_21548_16-0.5.1` `xen-tools >= 4.0.3_21548_16-0.5.1` `xen-tools-domU >= 4.0.3_21548_16-0.5.1`	Builds SAT Patch Nr: 8963
openSUSE 13.1	`xen >= 4.3.2_01-12.1` `xen-debugsource >= 4.3.2_01-12.1` `xen-devel >= 4.3.2_01-12.1` `xen-doc-html >= 4.3.2_01-12.1` `xen-kmp-default >= 4.3.2_01_k3.11.10_7-12.1` `xen-kmp-default-debuginfo >= 4.3.2_01_k3.11.10_7-12.1` `xen-kmp-desktop >= 4.3.2_01_k3.11.10_7-12.1` `xen-kmp-desktop-debuginfo >= 4.3.2_01_k3.11.10_7-12.1` `xen-kmp-pae >= 4.3.2_01_k3.11.10_7-12.1` `xen-kmp-pae-debuginfo >= 4.3.2_01_k3.11.10_7-12.1` `xen-libs >= 4.3.2_01-12.1` `xen-libs-32bit >= 4.3.2_01-12.1` `xen-libs-debuginfo >= 4.3.2_01-12.1` `xen-libs-debuginfo-32bit >= 4.3.2_01-12.1` `xen-tools >= 4.3.2_01-12.1` `xen-tools-debuginfo >= 4.3.2_01-12.1` `xen-tools-domU >= 4.3.2_01-12.1` `xen-tools-domU-debuginfo >= 4.3.2_01-12.1` `xen-xend-tools >= 4.3.2_01-12.1` `xen-xend-tools-debuginfo >= 4.3.2_01-12.1`	Patchnames: openSUSE-2014-272