Overview

File _patchinfo of Package patchinfo.31136

<patchinfo incident="31136">
  <issue tracker="bnc" id="1215748">VUL-0: CVE-2023-34327,CVE-2023-34328: xen: x86/AMD: Debug Mask handling (XSA-444)</issue>
  <issue tracker="bnc" id="1215746">VUL-0: CVE-2023-34326: xen: x86/AMD: missing IOMMU TLB flushing (XSA-442)</issue>
  <issue tracker="bnc" id="1215744">VUL-0: CVE-2023-34323: xen: xenstored: A transaction conflict can crash C Xenstored (XSA-440)</issue>
  <issue tracker="bnc" id="1215747">VUL-0: CVE-2023-34325: xen: Multiple vulnerabilities in libfsimage disk handling (XSA-443)</issue>
  <issue tracker="cve" id="2023-34328"/>
  <issue tracker="cve" id="2023-34323"/>
  <issue tracker="cve" id="2023-34326"/>
  <issue tracker="cve" id="2023-34327"/>
  <issue tracker="cve" id="2023-34325"/>
  <packager>charlesa</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for xen</summary>
  <reboot_needed/>
  <description>This update for xen fixes the following issues:

- CVE-2023-34323: Fixed a potential crash in C Xenstored due to an
  incorrect assertion (XSA-440) (bsc#1215744).
- CVE-2023-34326: Fixed a missing IOMMU TLB flush on x86 AMD systems
  with IOMMU hardware and PCI passthrough enabled (XSA-442)
  (bsc#1215746).
- CVE-2023-34325: Fixed multiple parsing issues in libfsimage
  (XSA-443) (bsc#1215747).
- CVE-2023-34327, CVE-2023-34328: Fixed multiple issues with AMD x86
  debugging functionality for guests (XSA-444) (bsc#1215748).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places