Upstream information

CVE-2015-2756 at MITRE

Description

QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict access to PCI command registers, which might allow local HVM guest users to cause a denial of service (non-maskable interrupt and host crash) by disabling the (1) memory or (2) I/O decoding for a PCI Express device and then accessing the device, which triggers an Unsupported Request (UR) response.

SUSE information

SUSE Bugzilla entry: 922706 [RESOLVED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Desktop 11 SP3
  • xen >= 4.2.5_04-0.9.1
  • xen-doc-html >= 4.2.5_04-0.9.1
  • xen-doc-pdf >= 4.2.5_04-0.9.1
  • xen-kmp-default >= 4.2.5_04_3.0.101_0.47.52-0.9.1
  • xen-kmp-pae >= 4.2.5_04_3.0.101_0.47.52-0.9.1
  • xen-libs >= 4.2.5_04-0.9.1
  • xen-libs-32bit >= 4.2.5_04-0.9.1
  • xen-tools >= 4.2.5_04-0.9.1
  • xen-tools-domU >= 4.2.5_04-0.9.1
Patchnames:
sledsp3-xen-201503
SUSE Linux Enterprise Desktop 12
  • xen >= 4.4.2_02-15.1
  • xen-kmp-default >= 4.4.2_02_k3.12.38_44-15.1
  • xen-libs >= 4.4.2_02-15.1
  • xen-libs-32bit >= 4.4.2_02-15.1
Patchnames:
SUSE-SLE-DESKTOP-12-2015-162
SUSE Linux Enterprise Desktop 12 SP1
  • xen >= 4.5.1_12-2.3
  • xen-kmp-default >= 4.5.1_12_k3.12.49_11-2.3
  • xen-libs >= 4.5.1_12-2.3
  • xen-libs-32bit >= 4.5.1_12-2.3
Patchnames:
SUSE Linux Enterprise Desktop 12 SP1 GA xen
SUSE Linux Enterprise Server 11 SP1-LTSS
  • xen >= 4.0.3_21548_18-0.15.1
  • xen-doc-html >= 4.0.3_21548_18-0.15.1
  • xen-doc-pdf >= 4.0.3_21548_18-0.15.1
  • xen-kmp-default >= 4.0.3_21548_18_2.6.32.59_0.19-0.15.1
  • xen-kmp-pae >= 4.0.3_21548_18_2.6.32.59_0.19-0.15.1
  • xen-kmp-trace >= 4.0.3_21548_18_2.6.32.59_0.19-0.15.1
  • xen-libs >= 4.0.3_21548_18-0.15.1
  • xen-tools >= 4.0.3_21548_18-0.15.1
  • xen-tools-domU >= 4.0.3_21548_18-0.15.1
Patchnames:
slessp1-xen-201503
SUSE Linux Enterprise Server 11 SP2-LTSS
  • xen >= 4.1.6_08-0.9.1
  • xen-devel >= 4.1.6_08-0.9.1
  • xen-doc-html >= 4.1.6_08-0.9.1
  • xen-doc-pdf >= 4.1.6_08-0.9.1
  • xen-kmp-default >= 4.1.6_08_3.0.101_0.7.29-0.9.1
  • xen-kmp-pae >= 4.1.6_08_3.0.101_0.7.29-0.9.1
  • xen-kmp-trace >= 4.1.6_08_3.0.101_0.7.29-0.9.1
  • xen-libs >= 4.1.6_08-0.9.1
  • xen-libs-32bit >= 4.1.6_08-0.9.1
  • xen-tools >= 4.1.6_08-0.9.1
  • xen-tools-domU >= 4.1.6_08-0.9.1
Patchnames:
slessp2-xen-201503
SUSE Linux Enterprise Server 11 SP3
  • xen >= 4.2.5_04-0.9.1
  • xen-doc-html >= 4.2.5_04-0.9.1
  • xen-doc-pdf >= 4.2.5_04-0.9.1
  • xen-kmp-default >= 4.2.5_04_3.0.101_0.47.52-0.9.1
  • xen-kmp-pae >= 4.2.5_04_3.0.101_0.47.52-0.9.1
  • xen-libs >= 4.2.5_04-0.9.1
  • xen-libs-32bit >= 4.2.5_04-0.9.1
  • xen-tools >= 4.2.5_04-0.9.1
  • xen-tools-domU >= 4.2.5_04-0.9.1
Patchnames:
slessp3-xen-201503
SUSE Linux Enterprise Server 11 SP4
  • xen >= 4.4.2_08-1.7
  • xen-doc-html >= 4.4.2_08-1.7
  • xen-kmp-default >= 4.4.2_08_3.0.101_63-1.7
  • xen-kmp-pae >= 4.4.2_08_3.0.101_63-1.7
  • xen-libs >= 4.4.2_08-1.7
  • xen-libs-32bit >= 4.4.2_08-1.7
  • xen-tools >= 4.4.2_08-1.7
  • xen-tools-domU >= 4.4.2_08-1.7
Patchnames:
SUSE Linux Enterprise Server 11 SP4 GA xen
SUSE Linux Enterprise Server 12
  • xen >= 4.4.2_02-15.1
  • xen-doc-html >= 4.4.2_02-15.1
  • xen-kmp-default >= 4.4.2_02_k3.12.38_44-15.1
  • xen-libs >= 4.4.2_02-15.1
  • xen-libs-32bit >= 4.4.2_02-15.1
  • xen-tools >= 4.4.2_02-15.1
  • xen-tools-domU >= 4.4.2_02-15.1
Patchnames:
SUSE-SLE-SERVER-12-2015-162
SUSE Linux Enterprise Server 12 SP1
  • xen >= 4.5.1_12-2.3
  • xen-doc-html >= 4.5.1_12-2.3
  • xen-kmp-default >= 4.5.1_12_k3.12.49_11-2.3
  • xen-libs >= 4.5.1_12-2.3
  • xen-libs-32bit >= 4.5.1_12-2.3
  • xen-tools >= 4.5.1_12-2.3
  • xen-tools-domU >= 4.5.1_12-2.3
Patchnames:
SUSE Linux Enterprise Server 12 SP1 GA xen
SUSE Linux Enterprise Server for SAP Applications 11 SP1-LTSS
  • xen >= 4.0.3_21548_18-0.15.1
  • xen-doc-html >= 4.0.3_21548_18-0.15.1
  • xen-doc-pdf >= 4.0.3_21548_18-0.15.1
  • xen-kmp-default >= 4.0.3_21548_18_2.6.32.59_0.19-0.15.1
  • xen-kmp-pae >= 4.0.3_21548_18_2.6.32.59_0.19-0.15.1
  • xen-kmp-trace >= 4.0.3_21548_18_2.6.32.59_0.19-0.15.1
  • xen-libs >= 4.0.3_21548_18-0.15.1
  • xen-tools >= 4.0.3_21548_18-0.15.1
  • xen-tools-domU >= 4.0.3_21548_18-0.15.1
Patchnames:
slessp1-xen-201503
SUSE Linux Enterprise Server for SAP Applications 11 SP2-LTSS
  • xen >= 4.1.6_08-0.9.1
  • xen-devel >= 4.1.6_08-0.9.1
  • xen-doc-html >= 4.1.6_08-0.9.1
  • xen-doc-pdf >= 4.1.6_08-0.9.1
  • xen-kmp-default >= 4.1.6_08_3.0.101_0.7.29-0.9.1
  • xen-kmp-pae >= 4.1.6_08_3.0.101_0.7.29-0.9.1
  • xen-kmp-trace >= 4.1.6_08_3.0.101_0.7.29-0.9.1
  • xen-libs >= 4.1.6_08-0.9.1
  • xen-libs-32bit >= 4.1.6_08-0.9.1
  • xen-tools >= 4.1.6_08-0.9.1
  • xen-tools-domU >= 4.1.6_08-0.9.1
Patchnames:
slessp2-xen-201503
SUSE Linux Enterprise Server for SAP Applications 11 SP3
  • xen >= 4.2.5_04-0.9.1
  • xen-doc-html >= 4.2.5_04-0.9.1
  • xen-doc-pdf >= 4.2.5_04-0.9.1
  • xen-kmp-default >= 4.2.5_04_3.0.101_0.47.52-0.9.1
  • xen-kmp-pae >= 4.2.5_04_3.0.101_0.47.52-0.9.1
  • xen-libs >= 4.2.5_04-0.9.1
  • xen-libs-32bit >= 4.2.5_04-0.9.1
  • xen-tools >= 4.2.5_04-0.9.1
  • xen-tools-domU >= 4.2.5_04-0.9.1
Patchnames:
slessp3-xen-201503
SUSE Linux Enterprise Server for SAP Applications 12
  • xen >= 4.4.2_02-15.1
  • xen-doc-html >= 4.4.2_02-15.1
  • xen-kmp-default >= 4.4.2_02_k3.12.38_44-15.1
  • xen-libs >= 4.4.2_02-15.1
  • xen-libs-32bit >= 4.4.2_02-15.1
  • xen-tools >= 4.4.2_02-15.1
  • xen-tools-domU >= 4.4.2_02-15.1
Patchnames:
SUSE-SLE-SERVER-12-2015-162
SUSE Linux Enterprise Software Development Kit 11 SP3
  • xen-devel >= 4.2.5_04-0.9.1
Patchnames:
sdksp3-xen-201503
SUSE Linux Enterprise Software Development Kit 11 SP4
  • xen-devel >= 4.4.2_08-1.7
Patchnames:
SUSE Linux Enterprise Software Development Kit 11 SP4 GA xen-devel
SUSE Linux Enterprise Software Development Kit 12
  • xen >= 4.4.2_02-15.1
  • xen-devel >= 4.4.2_02-15.1
Patchnames:
SUSE-SLE-SDK-12-2015-162
SUSE Linux Enterprise Software Development Kit 12 SP1
  • xen-devel >= 4.5.1_12-2.3
Patchnames:
SUSE Linux Enterprise Software Development Kit 12 SP1 GA xen-devel
SUSE Linux Enterprise Server 11 SP2 LTSS
  • xen-devel >= 4.1.6_08-0.9.1
  • xen-kmp-default >= 4.1.6_08_3.0.101_0.7.29-0.9.1
  • xen-kmp-pae >= 4.1.6_08_3.0.101_0.7.29-0.9.1
  • xen-kmp-trace >= 4.1.6_08_3.0.101_0.7.29-0.9.1
  • xen-libs >= 4.1.6_08-0.9.1
  • xen-tools-domU >= 4.1.6_08-0.9.1
Builds
SAT Patch Nr: 10561
SUSE Linux Enterprise Server 11 SP2 LTSS
  • xen >= 4.1.6_08-0.9.1
  • xen-devel >= 4.1.6_08-0.9.1
  • xen-doc-html >= 4.1.6_08-0.9.1
  • xen-doc-pdf >= 4.1.6_08-0.9.1
  • xen-kmp-default >= 4.1.6_08_3.0.101_0.7.29-0.9.1
  • xen-kmp-trace >= 4.1.6_08_3.0.101_0.7.29-0.9.1
  • xen-libs >= 4.1.6_08-0.9.1
  • xen-libs-32bit >= 4.1.6_08-0.9.1
  • xen-tools >= 4.1.6_08-0.9.1
  • xen-tools-domU >= 4.1.6_08-0.9.1
Builds
SAT Patch Nr: 10561
SUSE Linux Enterprise Server 11 SP1 LTSS
  • xen >= 4.0.3_21548_18-0.15.1
  • xen-doc-html >= 4.0.3_21548_18-0.15.1
  • xen-doc-pdf >= 4.0.3_21548_18-0.15.1
  • xen-kmp-default >= 4.0.3_21548_18_2.6.32.59_0.19-0.15.1
  • xen-kmp-pae >= 4.0.3_21548_18_2.6.32.59_0.19-0.15.1
  • xen-kmp-trace >= 4.0.3_21548_18_2.6.32.59_0.19-0.15.1
  • xen-libs >= 4.0.3_21548_18-0.15.1
  • xen-tools >= 4.0.3_21548_18-0.15.1
  • xen-tools-domU >= 4.0.3_21548_18-0.15.1
Builds
SAT Patch Nr: 10562
SUSE Linux Enterprise Server 11 SP1 LTSS
  • xen >= 4.0.3_21548_18-0.15.1
  • xen-doc-html >= 4.0.3_21548_18-0.15.1
  • xen-doc-pdf >= 4.0.3_21548_18-0.15.1
  • xen-kmp-default >= 4.0.3_21548_18_2.6.32.59_0.19-0.15.1
  • xen-kmp-trace >= 4.0.3_21548_18_2.6.32.59_0.19-0.15.1
  • xen-libs >= 4.0.3_21548_18-0.15.1
  • xen-tools >= 4.0.3_21548_18-0.15.1
  • xen-tools-domU >= 4.0.3_21548_18-0.15.1
Builds
SAT Patch Nr: 10562
SUSE Linux Enterprise Software Development Kit 11 SP3
  • xen-devel >= 4.2.5_04-0.9.1
Builds
SAT Patch Nr: 10560
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Server 11 SP3
  • xen-kmp-default >= 4.2.5_04_3.0.101_0.47.52-0.9.1
  • xen-kmp-pae >= 4.2.5_04_3.0.101_0.47.52-0.9.1
  • xen-libs >= 4.2.5_04-0.9.1
  • xen-tools-domU >= 4.2.5_04-0.9.1
Builds
SAT Patch Nr: 10560
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Server 11 SP3
  • xen >= 4.2.5_04-0.9.1
  • xen-doc-html >= 4.2.5_04-0.9.1
  • xen-doc-pdf >= 4.2.5_04-0.9.1
  • xen-kmp-default >= 4.2.5_04_3.0.101_0.47.52-0.9.1
  • xen-libs >= 4.2.5_04-0.9.1
  • xen-libs-32bit >= 4.2.5_04-0.9.1
  • xen-tools >= 4.2.5_04-0.9.1
  • xen-tools-domU >= 4.2.5_04-0.9.1
Builds
SAT Patch Nr: 10560
openSUSE 13.1
  • xen >= 4.3.4_02-41.1
  • xen-debugsource >= 4.3.4_02-41.1
  • xen-devel >= 4.3.4_02-41.1
  • xen-doc-html >= 4.3.4_02-41.1
  • xen-kmp-default >= 4.3.4_02_k3.11.10_29-41.1
  • xen-kmp-default-debuginfo >= 4.3.4_02_k3.11.10_29-41.1
  • xen-kmp-desktop >= 4.3.4_02_k3.11.10_29-41.1
  • xen-kmp-desktop-debuginfo >= 4.3.4_02_k3.11.10_29-41.1
  • xen-kmp-pae >= 4.3.4_02_k3.11.10_29-41.1
  • xen-kmp-pae-debuginfo >= 4.3.4_02_k3.11.10_29-41.1
  • xen-libs >= 4.3.4_02-41.1
  • xen-libs-32bit >= 4.3.4_02-41.1
  • xen-libs-debuginfo >= 4.3.4_02-41.1
  • xen-libs-debuginfo-32bit >= 4.3.4_02-41.1
  • xen-tools >= 4.3.4_02-41.1
  • xen-tools-debuginfo >= 4.3.4_02-41.1
  • xen-tools-domU >= 4.3.4_02-41.1
  • xen-tools-domU-debuginfo >= 4.3.4_02-41.1
  • xen-xend-tools >= 4.3.4_02-41.1
  • xen-xend-tools-debuginfo >= 4.3.4_02-41.1
Patchnames:
openSUSE-2015-314