Security update for xen SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:02030-1 Final 1 1 2025-06-20T07:04:04Z current 2025-06-20T07:04:04Z 2025-06-20T07:04:04Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for xen This update for xen fixes the following issues: Security fixes: - CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection (ITS) (XSA-469) (bsc#1243117) Other fixes: - Upstream bug fixes (bsc#1027519) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2025-2030,SUSE-SLE-Module-Basesystem-15-SP7-2025-2030,SUSE-SLE-Module-Server-Applications-15-SP7-2025-2030 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202502030-1/ Link for SUSE-SU-2025:02030-1 https://lists.suse.com/pipermail/sle-updates/2025-June/040389.html E-Mail link for SUSE-SU-2025:02030-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1027519 SUSE Bug 1027519 https://bugzilla.suse.com/1243117 SUSE Bug 1243117 https://www.suse.com/security/cve/CVE-2024-28956/ SUSE CVE CVE-2024-28956 page SUSE Linux Enterprise Module for Basesystem 15 SP7 SUSE Linux Enterprise Module for Server Applications 15 SP7 xen-4.20.0_12-150700.3.3.1 xen-devel-4.20.0_12-150700.3.3.1 xen-doc-html-4.20.0_12-150700.3.3.1 xen-libs-4.20.0_12-150700.3.3.1 xen-libs-32bit-4.20.0_12-150700.3.3.1 xen-libs-64bit-4.20.0_12-150700.3.3.1 xen-tools-4.20.0_12-150700.3.3.1 xen-tools-domU-4.20.0_12-150700.3.3.1 xen-tools-xendomains-wait-disk-4.20.0_12-150700.3.3.1 xen-libs-4.20.0_12-150700.3.3.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP7 xen-tools-domU-4.20.0_12-150700.3.3.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP7 xen-4.20.0_12-150700.3.3.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP7 xen-devel-4.20.0_12-150700.3.3.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP7 xen-tools-4.20.0_12-150700.3.3.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP7 xen-tools-xendomains-wait-disk-4.20.0_12-150700.3.3.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP7 Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. CVE-2024-28956 SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.0_12-150700.3.3.1 SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.0_12-150700.3.3.1 SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.0_12-150700.3.3.1 SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.0_12-150700.3.3.1 SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-4.20.0_12-150700.3.3.1 SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-xendomains-wait-disk-4.20.0_12-150700.3.3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502030-1/ https://www.suse.com/security/cve/CVE-2024-28956.html CVE-2024-28956 https://bugzilla.suse.com/1242006 SUSE Bug 1242006