Overview

File _patchinfo of Package patchinfo.34725

<patchinfo incident="34725">
  <issue tracker="bnc" id="1222453">VUL-0: CVE-2024-2201: xen: x86: Native Branch History Injection (XSA-456)</issue>
  <issue tracker="bnc" id="1227355">VUL-0: CVE-2024-31143: xen: double unlock in x86 guest IRQ handling (XSA-458)</issue>
  <issue tracker="bnc" id="1228574">VUL-0: CVE-2024-31145: xen: error handling in x86 IOMMU identity mapping (XSA-460)</issue>
  <issue tracker="bnc" id="1228575">VUL-0: CVE-2024-31146: xen: PCI device pass-through with shared resources (XSA-461)</issue>
  <issue tracker="bnc" id="1230366">VUL-0: CVE-2024-45817: xen: x86: Deadlock in vlapic_error() (XSA-462)</issue>
  <issue tracker="cve" id="2024-45817"/>
  <issue tracker="cve" id="2024-2201"/>
  <issue tracker="cve" id="2024-31143"/>
  <issue tracker="cve" id="2024-31145"/>
  <issue tracker="cve" id="2024-31146"/>
  <packager>charlesa</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for xen</summary>
  <description>This update for xen fixes the following issues:

- CVE-2024-2201: Mitigation for Native Branch History Injection (XSA-456, bsc#1222453)
- CVE-2024-31143: Fixed double unlock in x86 guest IRQ handling (XSA-458, bsc#1227355)
- CVE-2024-31145: Fixed error handling in x86 IOMMU identity mapping (XSA-460, bsc#1228574)
- CVE-2024-31146: Fixed PCI device pass-through with shared resources (XSA-461, bsc#1228575)
- CVE-2024-45817: Fixed a deadlock in vlapic_error (XSA-462, bsc#1230366)
</description>
<reboot_needed/>
</patchinfo>
openSUSE Build Service is sponsored by
Places