rpm package
suse/xen&distro=SUSE Linux Enterprise Micro 5.1
pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Micro%205.1
Vulnerabilities (90)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-23033 | — | < 4.14.3_06-150300.3.18.2 | 4.14.3_06-150300.3.18.2 | Jan 25, 2022 | arm: guest_physmap_remove_page not removing the p2m mappings The functions to remove one or more entries from a guest p2m pagetable on Arm (p2m_remove_mapping, guest_physmap_remove_page, and p2m_set_entry with mfn set to INVALID_MFN) do not actually clear the pagetable entry if t | ||
| CVE-2021-28709 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Nov 24, 2021 | issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them t | ||
| CVE-2021-28708 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Nov 24, 2021 | PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily hav | ||
| CVE-2021-28707 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Nov 24, 2021 | PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily hav | ||
| CVE-2021-28706 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Nov 24, 2021 | guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precisio | ||
| CVE-2021-28705 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Nov 24, 2021 | issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them t | ||
| CVE-2021-28704 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Nov 24, 2021 | PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily hav | ||
| CVE-2021-28702 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Oct 6, 2021 | PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, "RMRR"). These are typically used for platform tasks such as legacy USB emulation. If such a device is passed | ||
| CVE-2021-28701 | — | < 4.14.2_06-3.12.1 | 4.14.2_06-3.12.1 | Sep 8, 2021 | Another race in XENMAPSPACE_grant_table handling Guests are permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, are de-allocated when a guest sw | ||
| CVE-2021-28689 | — | < 4.14.5_06-150300.3.35.1 | 4.14.5_06-150300.3.35.1 | Jun 11, 2021 | x86: Speculative vulnerabilities with bare (non-shim) 32-bit PV guests 32-bit x86 PV guest kernels run in ring 1. At the time when Xen was developed, this area of the i386 architecture was rarely used, which is why Xen was able to use it to implement paravirtualisation, Xen's nov |
- CVE-2022-23033Jan 25, 2022affected < 4.14.3_06-150300.3.18.2fixed 4.14.3_06-150300.3.18.2
arm: guest_physmap_remove_page not removing the p2m mappings The functions to remove one or more entries from a guest p2m pagetable on Arm (p2m_remove_mapping, guest_physmap_remove_page, and p2m_set_entry with mfn set to INVALID_MFN) do not actually clear the pagetable entry if t
- CVE-2021-28709Nov 24, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them t
- CVE-2021-28708Nov 24, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily hav
- CVE-2021-28707Nov 24, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily hav
- CVE-2021-28706Nov 24, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precisio
- CVE-2021-28705Nov 24, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them t
- CVE-2021-28704Nov 24, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily hav
- CVE-2021-28702Oct 6, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, "RMRR"). These are typically used for platform tasks such as legacy USB emulation. If such a device is passed
- CVE-2021-28701Sep 8, 2021affected < 4.14.2_06-3.12.1fixed 4.14.2_06-3.12.1
Another race in XENMAPSPACE_grant_table handling Guests are permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, are de-allocated when a guest sw
- CVE-2021-28689Jun 11, 2021affected < 4.14.5_06-150300.3.35.1fixed 4.14.5_06-150300.3.35.1
x86: Speculative vulnerabilities with bare (non-shim) 32-bit PV guests 32-bit x86 PV guest kernels run in ring 1. At the time when Xen was developed, this area of the i386 architecture was rarely used, which is why Xen was able to use it to implement paravirtualisation, Xen's nov
Page 5 of 5