Overview

File _patchinfo of Package patchinfo.36398

<patchinfo incident="36398">
  <issue tracker="bnc" id="1232622">VUL-0: EMBARGOED: CVE-2024-45818: xen: Deadlock in x86 HVM standard VGA handling (XSA-463)</issue>
  <issue tracker="bnc" id="1232624">VUL-0: EMBARGOED: CVE-2024-45819: xen: libxl leaks data to PVH guests via ACPI tables (XSA-464)</issue>
  <issue tracker="bnc" id="1232542">remove usage of net-tools-deprecated from xen supportconfig plugin</issue>
  <issue tracker="bnc" id="1027519">Xen: Missing upstream bug fixes</issue>
  <issue tracker="bnc" id="1230366">VUL-0: CVE-2024-45817: xen: x86: Deadlock in vlapic_error() (XSA-462)</issue>
  <issue tracker="cve" id="2024-45819"/>
  <issue tracker="cve" id="2024-45818"/>
  <issue tracker="cve" id="2024-45817"/>
  <packager>charlesa</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for xen</summary>
  <description>This update for xen fixes the following issues:

Security issues fixed:

- CVE-2024-45818: xen: Deadlock in x86 HVM standard VGA handling (bsc#1232622)
- CVE-2024-45819: xen: libxl leaks data to PVH guests via ACPI tables (bsc#1232624)
- CVE-2024-45817: xen: x86: Deadlock in vlapic_error() (bsc#1230366)

Non-security issues fixed:

- Removed usage of net-tools-deprecated from supportconfig plugin (bsc#1232542)
- Upstream bug fixes (bsc#1027519)
</description>
<reboot_needed/>
</patchinfo>
openSUSE Build Service is sponsored by
Places