Overview
Security update for xen

This update for xen fixes the following issues:

Security issues fixed:

- CVE-2018-3665: Fix Lazy FP Save/Restore issue (XSA-267) (bsc#1095242).
- CVE-2018-12891: Fix possible Denial of Service (DoS) via certain PV MMU operations that affect the entire host (XSA-264) (bsc#1097521).
- CVE-2018-12892: Fix libxl to honour the readonly flag on HVM emulated SCSI disks (XSA-266) (bsc#1097523).
- CVE-2018-12893: Fix crash/Denial of Service (DoS) via safety check (XSA-265) (bsc#1097522).

Bug fixes:

- bsc#1027519: Add upstream patches from January.
- bsc#1098403: Fix regression introduced by changes for bsc#1079730. A PV domU without qcow2 and/or vfb has no qemu attached. Ignore QMP errors for PV domUs to handle PV domUs with and without an attached qemu-xen.
- bsc#1087289: Fix xen scheduler crash.

This update was imported from the SUSE:SLE-15:Update update project.

Fixed bugs
bnc#1097521
VUL-0: CVE-2018-12891: xen: preemption checks bypassed in x86 PV MM handling (XSA-264)
bnc#1097523
VUL-0: CVE-2018-12892: xen: libxl fails to honour readonly flag on HVM emulated SCSI disks (XSA-266)
bnc#1097522
VUL-0: CVE-2018-12893: xen: x86: #DB exception safety check can be triggered by a guest (XSA-265)
bnc#1098403
migration of PV sle12 domU with raw image and without vfb= fails
bnc#1079730
[migration][xen] xen be: qdisk-51712: error: Failed to get "write" lock
bnc#1027519
Xen: Missing upstream bug fixes
bnc#1087289
Xen BUG at sched_credit.c:1663
bnc#1095242
VUL-0: CVE-2018-3665: xen: Lazy FP Save/Restore (XSA-267)
CVE-2018-3665
CVE-2018-12891
CVE-2018-12892
CVE-2018-12893
Selected Binaries
openSUSE Build Service is sponsored by
Places