xen-4.17.1_02-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:12917 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z xen-4.17.1_02-1.1 on GA media These are all security issues fixed in the xen-4.17.1_02-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-12917 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:12917 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2022-42335/ SUSE CVE CVE-2022-42335 page openSUSE Tumbleweed xen-4.17.1_02-1.1 xen-devel-4.17.1_02-1.1 xen-doc-html-4.17.1_02-1.1 xen-libs-4.17.1_02-1.1 xen-tools-4.17.1_02-1.1 xen-tools-domU-4.17.1_02-1.1 xen-tools-xendomains-wait-disk-4.17.1_02-1.1 xen-4.17.1_02-1.1 as a component of openSUSE Tumbleweed xen-devel-4.17.1_02-1.1 as a component of openSUSE Tumbleweed xen-doc-html-4.17.1_02-1.1 as a component of openSUSE Tumbleweed xen-libs-4.17.1_02-1.1 as a component of openSUSE Tumbleweed xen-tools-4.17.1_02-1.1 as a component of openSUSE Tumbleweed xen-tools-domU-4.17.1_02-1.1 as a component of openSUSE Tumbleweed xen-tools-xendomains-wait-disk-4.17.1_02-1.1 as a component of openSUSE Tumbleweed x86 shadow paging arbitrary pointer dereference In environments where host assisted address translation is necessary but Hardware Assisted Paging (HAP) is unavailable, Xen will run guests in so called shadow mode. Due to too lax a check in one of the hypervisor routines used for shadow page handling it is possible for a guest with a PCI device passed through to cause the hypervisor to access an arbitrary pointer partially under guest control. CVE-2022-42335 openSUSE Tumbleweed:xen-4.17.1_02-1.1 openSUSE Tumbleweed:xen-devel-4.17.1_02-1.1 openSUSE Tumbleweed:xen-doc-html-4.17.1_02-1.1 openSUSE Tumbleweed:xen-libs-4.17.1_02-1.1 openSUSE Tumbleweed:xen-tools-4.17.1_02-1.1 openSUSE Tumbleweed:xen-tools-domU-4.17.1_02-1.1 openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.17.1_02-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-42335.html CVE-2022-42335 https://bugzilla.suse.com/1210315 SUSE Bug 1210315