Overview

File _patchinfo of Package patchinfo.7985

<patchinfo incident="7985">
  <issue tracker="bnc" id="1097521">VUL-0: CVE-2018-12891: xen: preemption checks bypassed in x86 PV MM handling (XSA-264)</issue>
  <issue tracker="bnc" id="1097523">VUL-0: CVE-2018-12892: xen: libxl fails to honour readonly flag on HVM emulated SCSI disks (XSA-266)</issue>
  <issue tracker="bnc" id="1097522">VUL-0: CVE-2018-12893: xen: x86: #DB exception safety check can be triggered by a guest (XSA-265)</issue>
  <issue tracker="bnc" id="1098403">migration of PV sle12 domU with raw image and without vfb= fails</issue>
  <issue tracker="bnc" id="1079730">[migration][xen] xen be: qdisk-51712: error: Failed to get "write" lock</issue>
  <issue tracker="bnc" id="1027519">Xen: Missing upstream bug fixes</issue>
  <issue tracker="bnc" id="1087289">Xen BUG at sched_credit.c:1663</issue>
  <issue tracker="bnc" id="1095242">VUL-0: CVE-2018-3665: xen: Lazy FP Save/Restore (XSA-267)</issue>
  <issue tracker="cve" id="2018-3665"/>
  <issue tracker="cve" id="2018-12891"/>
  <issue tracker="cve" id="2018-12892"/>
  <issue tracker="cve" id="2018-12893"/>
  <category>security</category>
  <rating>important</rating>
  <packager>charlesa</packager>
  <description>This update for xen fixes the following issues:

Security issues fixed:

- CVE-2018-3665: Fix Lazy FP Save/Restore issue (XSA-267) (bsc#1095242).
- CVE-2018-12891: Fix possible Denial of Service (DoS) via certain PV MMU operations that affect the entire host (XSA-264) (bsc#1097521).
- CVE-2018-12892: Fix libxl to honour the readonly flag on HVM emulated SCSI disks (XSA-266) (bsc#1097523).
- CVE-2018-12893: Fix crash/Denial of Service (DoS) via safety check (XSA-265) (bsc#1097522).


Bug fixes:

- bsc#1027519: Add upstream patches from January.
- bsc#1098403: Fix regression introduced by changes for bsc#1079730. A PV domU without qcow2 and/or vfb has no qemu attached. Ignore QMP errors for PV domUs to handle PV domUs with and without an attached qemu-xen.
- bsc#1087289: Fix xen scheduler crash.
</description>
  <summary>Security update for xen</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places