Security update for xen SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2024:2535-1 Final 1 1 2024-07-16T12:12:51Z current 2024-07-16T12:12:51Z 2024-07-16T12:12:51Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for xen This update for xen fixes the following issues: - CVE-2023-28746: Register File Data Sampling (XSA-452, bsc#1221332) - CVE-2023-46842: HVM hypercalls may trigger Xen bug check (XSA-454, bsc#1221984) - CVE-2024-2193: Fixed GhostRace, a speculative race conditions. (XSA-453, bsc#1221334) - CVE-2024-2201: Mitigation for Native Branch History Injection (XSA-456, bsc#1222453) - CVE-2024-31142: Fixed incorrect logic for BTC/SRSO mitigations (XSA-455, bsc#1222302) - CVE-2024-31143: Fixed double unlock in x86 guest IRQ handling (XSA-458, bsc#1227355) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2024-2535,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2535,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2535,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2535 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2024/suse-su-20242535-1/ Link for SUSE-SU-2024:2535-1 https://lists.suse.com/pipermail/sle-security-updates/2024-July/018986.html E-Mail link for SUSE-SU-2024:2535-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1214083 SUSE Bug 1214083 https://bugzilla.suse.com/1221332 SUSE Bug 1221332 https://bugzilla.suse.com/1221334 SUSE Bug 1221334 https://bugzilla.suse.com/1221984 SUSE Bug 1221984 https://bugzilla.suse.com/1222302 SUSE Bug 1222302 https://bugzilla.suse.com/1222453 SUSE Bug 1222453 https://bugzilla.suse.com/1227355 SUSE Bug 1227355 https://www.suse.com/security/cve/CVE-2023-28746/ SUSE CVE CVE-2023-28746 page https://www.suse.com/security/cve/CVE-2023-46842/ SUSE CVE CVE-2023-46842 page https://www.suse.com/security/cve/CVE-2024-2193/ SUSE CVE CVE-2024-2193 page https://www.suse.com/security/cve/CVE-2024-2201/ SUSE CVE CVE-2024-2201 page https://www.suse.com/security/cve/CVE-2024-31142/ SUSE CVE CVE-2024-31142 page https://www.suse.com/security/cve/CVE-2024-31143/ SUSE CVE CVE-2024-31143 page SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS SUSE Linux Enterprise Server 15 SP2-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP2 xen-4.13.5_12-150200.3.93.1 xen-devel-4.13.5_12-150200.3.93.1 xen-doc-html-4.13.5_12-150200.3.93.1 xen-libs-4.13.5_12-150200.3.93.1 xen-libs-32bit-4.13.5_12-150200.3.93.1 xen-libs-64bit-4.13.5_12-150200.3.93.1 xen-tools-4.13.5_12-150200.3.93.1 xen-tools-domU-4.13.5_12-150200.3.93.1 xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 xen-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS xen-devel-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS xen-libs-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS xen-tools-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS xen-tools-domU-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS xen-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS xen-devel-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS xen-libs-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS xen-tools-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS xen-tools-domU-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS xen-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 xen-devel-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 xen-libs-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 xen-tools-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 xen-tools-domU-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. CVE-2023-28746 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20242535-1/ https://www.suse.com/security/cve/CVE-2023-28746.html CVE-2023-28746 https://bugzilla.suse.com/1213456 SUSE Bug 1213456 https://bugzilla.suse.com/1221323 SUSE Bug 1221323 Unlike 32-bit PV guests, HVM guests may switch freely between 64-bit and other modes. This in particular means that they may set registers used to pass 32-bit-mode hypercall arguments to values outside of the range 32-bit code would be able to set them to. When processing of hypercalls takes a considerable amount of time, the hypervisor may choose to invoke a hypercall continuation. Doing so involves putting (perhaps updated) hypercall arguments in respective registers. For guests not running in 64-bit mode this further involves a certain amount of translation of the values. Unfortunately internal sanity checking of these translated values assumes high halves of registers to always be clear when invoking a hypercall. When this is found not to be the case, it triggers a consistency check in the hypervisor and causes a crash. CVE-2023-46842 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20242535-1/ https://www.suse.com/security/cve/CVE-2023-46842.html CVE-2023-46842 https://bugzilla.suse.com/1221984 SUSE Bug 1221984 A Speculative Race Condition (SRC) vulnerability that impacts modern CPU architectures supporting speculative execution (related to Spectre V1) has been disclosed. An unauthenticated attacker can exploit this vulnerability to disclose arbitrary data from the CPU using race conditions to access the speculative executable code paths. CVE-2024-2193 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20242535-1/ https://www.suse.com/security/cve/CVE-2024-2193.html CVE-2024-2193 https://bugzilla.suse.com/1217857 SUSE Bug 1217857 A cross-privilege Spectre v2 vulnerability allows attackers to bypass all deployed mitigations, including the recent Fine(IBT), and to leak arbitrary Linux kernel memory on Intel systems. CVE-2024-2201 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20242535-1/ https://www.suse.com/security/cve/CVE-2024-2201.html CVE-2024-2201 https://bugzilla.suse.com/1212111 SUSE Bug 1212111 https://bugzilla.suse.com/1217339 SUSE Bug 1217339 Because of a logical error in XSA-407 (Branch Type Confusion), the mitigation is not applied properly when it is intended to be used. XSA-434 (Speculative Return Stack Overflow) uses the same infrastructure, so is equally impacted. For more details, see: https://xenbits.xen.org/xsa/advisory-407.html https://xenbits.xen.org/xsa/advisory-434.html CVE-2024-31142 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20242535-1/ https://www.suse.com/security/cve/CVE-2024-31142.html CVE-2024-31142 https://bugzilla.suse.com/1222302 SUSE Bug 1222302 An optional feature of PCI MSI called "Multiple Message" allows a device to use multiple consecutive interrupt vectors. Unlike for MSI-X, the setting up of these consecutive vectors needs to happen all in one go. In this handling an error path could be taken in different situations, with or without a particular lock held. This error path wrongly releases the lock even when it is not currently held. CVE-2024-31143 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-devel-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-libs-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-domU-4.13.5_12-150200.3.93.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xen-tools-xendomains-wait-disk-4.13.5_12-150200.3.93.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20242535-1/ https://www.suse.com/security/cve/CVE-2024-31143.html CVE-2024-31143 https://bugzilla.suse.com/1227355 SUSE Bug 1227355