patchinfo.12484 - openSUSE Build Service

Security update for xen

This update for xen fixes the following issues:

Security issues fixed:

- CVE-2020-11742: Bad continuation handling in GNTTABOP_copy (bsc#1169392).
- CVE-2020-11740, CVE-2020-11741: xen: XSA-313 multiple xenoprof issues (bsc#1168140).
- CVE-2020-11739: Missing memory barriers in read-write unlock paths (bsc#1168142).
- CVE-2020-11743: Bad error path in GNTTABOP_map_grant (bsc#1168143).
- arm: a CPU may speculate past the ERET instruction (bsc#1160932).

Non-security issues fixed:

- Xenstored Crashed during VM install (bsc#1167152)
- DomU hang: soft lockup CPU #0 stuck under high load (bsc#1165206, bsc#1134506)
- Update API compatibility versions, fixes issues for libvirt. (bsc#1167007, bsc#1157490)
- aacraid blocks xen commands (bsc#1155200)

This update was imported from the SUSE:SLE-15-SP1:Update update project.

Submitted by Charles Arnold (charlesa)

Fixed bugs

L3: Xenstored Crashed during VM install Need Core analyzed

VUL-0: xen: XSA-312 v1: arm: a CPU may speculate past the ERET instruction

VUL-0: CVE-2020-11743: xen: XSA-316 v1 - Bad error path in GNTTABOP_map_grant

Xen 4.12 DomU hang / freeze / stall / NMI watchdog bug soft lockup CPU #0 stuck under high load / upstream with workaround

VUL-0: CVE-2020-11742: xen: Bad continuation handling in GNTTABOP_copy (XSA-318)

dom0 hang and 'BUG: workqueue lockup' messages

VUL-0: CVE-2020-11739: xen: XSA-314 v1 - Missing memory barriers in read-write unlock paths

libvirtd.service fails to load on Xen 12TB system - unable to configure libxl memory management

Xen: Missing upstream bug fixes

L3: L3-Support: aacraid blocks xen commands - ref:_00D1igLOd._5001iIvV1f:ref

VUL-0: CVE-2020-11740,CVE-2020-11741 xen: XSA-313 v1 - multiple xenoprof issues

[limit][xen][SR950] Fail to load libvirtd.service on xen 8TB memory system

Selected Binaries

openSUSE Build Service is sponsored by