Security update for xen

Announcement ID:	SUSE-SU-2019:2753-1
Rating:	important
References:	bsc#1027519 bsc#1111331 bsc#1126140 bsc#1126141 bsc#1126192 bsc#1126195 bsc#1126196 bsc#1126197 bsc#1126198 bsc#1126201 bsc#1127400 bsc#1129642 bsc#1131811 bsc#1137717 bsc#1138294 bsc#1143797 bsc#1145240 bsc#1145774 bsc#1146874 bsc#1149813
Cross-References:	CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 CVE-2019-12068 CVE-2019-14378 CVE-2019-15890 CVE-2019-17340 CVE-2019-17341 CVE-2019-17342 CVE-2019-17343 CVE-2019-17344 CVE-2019-17345 CVE-2019-17346 CVE-2019-17347 CVE-2019-17348
CVSS scores:	CVE-2018-12126 ( SUSE ): 3.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N CVE-2018-12126 ( NVD ): 5.6 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2018-12127 ( SUSE ): 3.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N CVE-2018-12127 ( NVD ): 5.6 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2018-12130 ( SUSE ): 6.5 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2018-12130 ( NVD ): 5.6 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2019-11091 ( SUSE ): 6.5 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2019-11091 ( NVD ): 5.6 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2019-12068 ( SUSE ): 4.4 CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVE-2019-12068 ( NVD ): 3.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L CVE-2019-14378 ( SUSE ): 7.8 CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2019-14378 ( NVD ): 8.8 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-15890 ( SUSE ): 5.8 CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H CVE-2019-17340 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-17340 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2019-17341 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2019-17342 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-17343 ( NVD ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-17344 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-17344 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVE-2019-17345 ( SUSE ): 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-17345 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVE-2019-17346 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H CVE-2019-17346 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2019-17347 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H CVE-2019-17347 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-17348 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H CVE-2019-17348 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
Affected Products:	SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP4 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP4

An update that solves 16 vulnerabilities and has four security fixes can now be installed.

Description:

This update for xen to version 4.11.2 fixes the following issues:

Security issues fixed:

• CVE-2019-15890: Fixed a use-after-free in SLiRP networking implementation of QEMU emulator which could have led to Denial of Service (bsc#1149813).
• CVE-2019-12068: Fixed an issue in lsi which could lead to an infinite loop and denial of service (bsc#1146874).
• CVE-2019-14378: Fixed a heap buffer overflow in SLiRp networking implementation of QEMU emulator which could have led to execution of arbitrary code with privileges of the QEMU process (bsc#1143797).

Other issues fixed:

• Fixed an HPS bug which did not allow to install Windows Server 2016 with 2 CPUs setting or above (bsc#1137717).
• Fixed a segmentation fault in Libvrtd during live migration to a VM (bsc#1145774).
• Fixed an issue where libxenlight could not create new domain (bsc#1131811).
• Fixed an issue where attached pci devices were lost after reboot (bsc#1129642).
• Fixed an issue where Xen could not pre-allocate 1 shadow page (bsc#1145240).

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• SUSE Linux Enterprise Desktop 12 SP4
  zypper in -t patch SUSE-SLE-DESKTOP-12-SP4-2019-2753=1
• SUSE Linux Enterprise Software Development Kit 12 SP4
  zypper in -t patch SUSE-SLE-SDK-12-SP4-2019-2753=1
• SUSE Linux Enterprise High Performance Computing 12 SP4
  zypper in -t patch SUSE-SLE-SERVER-12-SP4-2019-2753=1
• SUSE Linux Enterprise Server for SAP Applications 12 SP4
  zypper in -t patch SUSE-SLE-SERVER-12-SP4-2019-2753=1
• SUSE Linux Enterprise Server 12 SP4
  zypper in -t patch SUSE-SLE-SERVER-12-SP4-2019-2753=1

Package List:

• SUSE Linux Enterprise Desktop 12 SP4 (x86_64)
  • xen-libs-debuginfo-32bit-4.11.2_02-2.14.2
  • xen-4.11.2_02-2.14.2
  • xen-libs-32bit-4.11.2_02-2.14.2
  • xen-libs-debuginfo-4.11.2_02-2.14.2
  • xen-libs-4.11.2_02-2.14.2
  • xen-debugsource-4.11.2_02-2.14.2
• SUSE Linux Enterprise Software Development Kit 12 SP4 (aarch64 x86_64)
  • xen-debugsource-4.11.2_02-2.14.2
  • xen-devel-4.11.2_02-2.14.2
• SUSE Linux Enterprise High Performance Computing 12 SP4 (x86_64)
  • xen-doc-html-4.11.2_02-2.14.2
  • xen-libs-debuginfo-32bit-4.11.2_02-2.14.2
  • xen-4.11.2_02-2.14.2
  • xen-tools-4.11.2_02-2.14.2
  • xen-tools-domU-debuginfo-4.11.2_02-2.14.2
  • xen-libs-32bit-4.11.2_02-2.14.2
  • xen-libs-debuginfo-4.11.2_02-2.14.2
  • xen-libs-4.11.2_02-2.14.2
  • xen-tools-domU-4.11.2_02-2.14.2
  • xen-debugsource-4.11.2_02-2.14.2
  • xen-tools-debuginfo-4.11.2_02-2.14.2
• SUSE Linux Enterprise Server for SAP Applications 12 SP4 (x86_64)
  • xen-doc-html-4.11.2_02-2.14.2
  • xen-libs-debuginfo-32bit-4.11.2_02-2.14.2
  • xen-4.11.2_02-2.14.2
  • xen-tools-4.11.2_02-2.14.2
  • xen-tools-domU-debuginfo-4.11.2_02-2.14.2
  • xen-libs-32bit-4.11.2_02-2.14.2
  • xen-libs-debuginfo-4.11.2_02-2.14.2
  • xen-libs-4.11.2_02-2.14.2
  • xen-tools-domU-4.11.2_02-2.14.2
  • xen-debugsource-4.11.2_02-2.14.2
  • xen-tools-debuginfo-4.11.2_02-2.14.2
• SUSE Linux Enterprise Server 12 SP4 (x86_64)
  • xen-doc-html-4.11.2_02-2.14.2
  • xen-libs-debuginfo-32bit-4.11.2_02-2.14.2
  • xen-4.11.2_02-2.14.2
  • xen-tools-4.11.2_02-2.14.2
  • xen-tools-domU-debuginfo-4.11.2_02-2.14.2
  • xen-libs-32bit-4.11.2_02-2.14.2
  • xen-libs-debuginfo-4.11.2_02-2.14.2
  • xen-libs-4.11.2_02-2.14.2
  • xen-tools-domU-4.11.2_02-2.14.2
  • xen-debugsource-4.11.2_02-2.14.2
  • xen-tools-debuginfo-4.11.2_02-2.14.2

References:

• https://www.suse.com/security/cve/CVE-2018-12126.html
• https://www.suse.com/security/cve/CVE-2018-12127.html
• https://www.suse.com/security/cve/CVE-2018-12130.html
• https://www.suse.com/security/cve/CVE-2019-11091.html
• https://www.suse.com/security/cve/CVE-2019-12068.html
• https://www.suse.com/security/cve/CVE-2019-14378.html
• https://www.suse.com/security/cve/CVE-2019-15890.html
• https://www.suse.com/security/cve/CVE-2019-17340.html
• https://www.suse.com/security/cve/CVE-2019-17341.html
• https://www.suse.com/security/cve/CVE-2019-17342.html
• https://www.suse.com/security/cve/CVE-2019-17343.html
• https://www.suse.com/security/cve/CVE-2019-17344.html
• https://www.suse.com/security/cve/CVE-2019-17345.html
• https://www.suse.com/security/cve/CVE-2019-17346.html
• https://www.suse.com/security/cve/CVE-2019-17347.html
• https://www.suse.com/security/cve/CVE-2019-17348.html
• https://bugzilla.suse.com/show_bug.cgi?id=1027519
• https://bugzilla.suse.com/show_bug.cgi?id=1111331
• https://bugzilla.suse.com/show_bug.cgi?id=1126140
• https://bugzilla.suse.com/show_bug.cgi?id=1126141
• https://bugzilla.suse.com/show_bug.cgi?id=1126192
• https://bugzilla.suse.com/show_bug.cgi?id=1126195
• https://bugzilla.suse.com/show_bug.cgi?id=1126196
• https://bugzilla.suse.com/show_bug.cgi?id=1126197
• https://bugzilla.suse.com/show_bug.cgi?id=1126198
• https://bugzilla.suse.com/show_bug.cgi?id=1126201
• https://bugzilla.suse.com/show_bug.cgi?id=1127400
• https://bugzilla.suse.com/show_bug.cgi?id=1129642
• https://bugzilla.suse.com/show_bug.cgi?id=1131811
• https://bugzilla.suse.com/show_bug.cgi?id=1137717
• https://bugzilla.suse.com/show_bug.cgi?id=1138294
• https://bugzilla.suse.com/show_bug.cgi?id=1143797
• https://bugzilla.suse.com/show_bug.cgi?id=1145240
• https://bugzilla.suse.com/show_bug.cgi?id=1145774
• https://bugzilla.suse.com/show_bug.cgi?id=1146874
• https://bugzilla.suse.com/show_bug.cgi?id=1149813