rpm package
suse/xen&distro=SUSE Linux Enterprise Module for Server Applications 15 SP3
pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP3
Vulnerabilities (65)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-26401 | — | < 4.14.4_02-150300.3.21.1 | 4.14.4_02-150300.3.21.1 | Mar 11, 2022 | LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs. | ||
| CVE-2022-0001 | — | < 4.14.4_02-150300.3.21.1 | 4.14.4_02-150300.3.21.1 | Mar 11, 2022 | Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access. | ||
| CVE-2022-23035 | — | < 4.14.3_06-150300.3.18.2 | 4.14.3_06-150300.3.18.2 | Jan 25, 2022 | Insufficient cleanup of passed-through device IRQs The management of IRQs associated with physical devices exposed to x86 HVM guests involves an iterative operation in particular when cleaning up after the guest's use of the device. In the case where an interrupt is not quiescent | ||
| CVE-2022-23034 | — | < 4.14.3_06-150300.3.18.2 | 4.14.3_06-150300.3.18.2 | Jan 25, 2022 | A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unma | ||
| CVE-2022-23033 | — | < 4.14.3_06-150300.3.18.2 | 4.14.3_06-150300.3.18.2 | Jan 25, 2022 | arm: guest_physmap_remove_page not removing the p2m mappings The functions to remove one or more entries from a guest p2m pagetable on Arm (p2m_remove_mapping, guest_physmap_remove_page, and p2m_set_entry with mfn set to INVALID_MFN) do not actually clear the pagetable entry if t | ||
| CVE-2021-28709 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Nov 24, 2021 | issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them t | ||
| CVE-2021-28708 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Nov 24, 2021 | PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily hav | ||
| CVE-2021-28707 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Nov 24, 2021 | PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily hav | ||
| CVE-2021-28706 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Nov 24, 2021 | guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precisio | ||
| CVE-2021-28705 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Nov 24, 2021 | issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them t | ||
| CVE-2021-28704 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Nov 24, 2021 | PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily hav | ||
| CVE-2021-28702 | — | < 4.14.3_04-3.15.1 | 4.14.3_04-3.15.1 | Oct 6, 2021 | PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, "RMRR"). These are typically used for platform tasks such as legacy USB emulation. If such a device is passed | ||
| CVE-2021-28701 | — | < 4.14.2_06-3.12.1 | 4.14.2_06-3.12.1 | Sep 8, 2021 | Another race in XENMAPSPACE_grant_table handling Guests are permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, are de-allocated when a guest sw | ||
| CVE-2021-28696 | — | < 4.14.2_04-3.9.1 | 4.14.2_04-3.9.1 | Aug 27, 2021 | IOMMU page mapping issues on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Both AMD and Intel allow ACPI tables to specify regions of memory which should be left untranslated, which typically m | ||
| CVE-2021-28695 | — | < 4.14.2_04-3.9.1 | 4.14.2_04-3.9.1 | Aug 27, 2021 | IOMMU page mapping issues on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Both AMD and Intel allow ACPI tables to specify regions of memory which should be left untranslated, which typically m | ||
| CVE-2021-28694 | — | < 4.14.2_04-3.9.1 | 4.14.2_04-3.9.1 | Aug 27, 2021 | IOMMU page mapping issues on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Both AMD and Intel allow ACPI tables to specify regions of memory which should be left untranslated, which typically m | ||
| CVE-2021-28697 | — | < 4.14.2_04-3.9.1 | 4.14.2_04-3.9.1 | Aug 27, 2021 | grant table v2 status pages may remain accessible after de-allocation Guest get permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, get de-alloc | ||
| CVE-2021-28698 | — | < 4.14.2_04-3.9.1 | 4.14.2_04-3.9.1 | Aug 27, 2021 | long running loops in grant table handling In order to properly monitor resource use, Xen maintains information on the grant mappings a domain may create to map grants offered by other domains. In the process of carrying out certain actions, Xen would iterate over all such entrie | ||
| CVE-2021-28699 | — | < 4.14.2_04-3.9.1 | 4.14.2_04-3.9.1 | Aug 27, 2021 | inadequate grant-v2 status frames array bounds check The v2 grant table interface separates grant attributes from grant status. That is, when operating in this mode, a guest has two tables. As a result, guests also need to be able to retrieve the addresses that the new status tra | ||
| CVE-2021-28700 | — | < 4.14.2_04-3.9.1 | 4.14.2_04-3.9.1 | Aug 27, 2021 | xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond what an administrator originally |
- CVE-2021-26401Mar 11, 2022affected < 4.14.4_02-150300.3.21.1fixed 4.14.4_02-150300.3.21.1
LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.
- CVE-2022-0001Mar 11, 2022affected < 4.14.4_02-150300.3.21.1fixed 4.14.4_02-150300.3.21.1
Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
- CVE-2022-23035Jan 25, 2022affected < 4.14.3_06-150300.3.18.2fixed 4.14.3_06-150300.3.18.2
Insufficient cleanup of passed-through device IRQs The management of IRQs associated with physical devices exposed to x86 HVM guests involves an iterative operation in particular when cleaning up after the guest's use of the device. In the case where an interrupt is not quiescent
- CVE-2022-23034Jan 25, 2022affected < 4.14.3_06-150300.3.18.2fixed 4.14.3_06-150300.3.18.2
A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was introduced for grant mappings for the case where a PV guest would have the IOMMU enabled. PV guests can request two forms of mappings. When both are in use for any individual mapping, unma
- CVE-2022-23033Jan 25, 2022affected < 4.14.3_06-150300.3.18.2fixed 4.14.3_06-150300.3.18.2
arm: guest_physmap_remove_page not removing the p2m mappings The functions to remove one or more entries from a guest p2m pagetable on Arm (p2m_remove_mapping, guest_physmap_remove_page, and p2m_set_entry with mfn set to INVALID_MFN) do not actually clear the pagetable entry if t
- CVE-2021-28709Nov 24, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them t
- CVE-2021-28708Nov 24, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily hav
- CVE-2021-28707Nov 24, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily hav
- CVE-2021-28706Nov 24, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precisio
- CVE-2021-28705Nov 24, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them t
- CVE-2021-28704Nov 24, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mode, to provide a way for them to later easily hav
- CVE-2021-28702Oct 6, 2021affected < 4.14.3_04-3.15.1fixed 4.14.3_04-3.15.1
PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, "RMRR"). These are typically used for platform tasks such as legacy USB emulation. If such a device is passed
- CVE-2021-28701Sep 8, 2021affected < 4.14.2_06-3.12.1fixed 4.14.2_06-3.12.1
Another race in XENMAPSPACE_grant_table handling Guests are permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, are de-allocated when a guest sw
- CVE-2021-28696Aug 27, 2021affected < 4.14.2_04-3.9.1fixed 4.14.2_04-3.9.1
IOMMU page mapping issues on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Both AMD and Intel allow ACPI tables to specify regions of memory which should be left untranslated, which typically m
- CVE-2021-28695Aug 27, 2021affected < 4.14.2_04-3.9.1fixed 4.14.2_04-3.9.1
IOMMU page mapping issues on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Both AMD and Intel allow ACPI tables to specify regions of memory which should be left untranslated, which typically m
- CVE-2021-28694Aug 27, 2021affected < 4.14.2_04-3.9.1fixed 4.14.2_04-3.9.1
IOMMU page mapping issues on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Both AMD and Intel allow ACPI tables to specify regions of memory which should be left untranslated, which typically m
- CVE-2021-28697Aug 27, 2021affected < 4.14.2_04-3.9.1fixed 4.14.2_04-3.9.1
grant table v2 status pages may remain accessible after de-allocation Guest get permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, get de-alloc
- CVE-2021-28698Aug 27, 2021affected < 4.14.2_04-3.9.1fixed 4.14.2_04-3.9.1
long running loops in grant table handling In order to properly monitor resource use, Xen maintains information on the grant mappings a domain may create to map grants offered by other domains. In the process of carrying out certain actions, Xen would iterate over all such entrie
- CVE-2021-28699Aug 27, 2021affected < 4.14.2_04-3.9.1fixed 4.14.2_04-3.9.1
inadequate grant-v2 status frames array bounds check The v2 grant table interface separates grant attributes from grant status. That is, when operating in this mode, a guest has two tables. As a result, guests also need to be able to retrieve the addresses that the new status tra
- CVE-2021-28700Aug 27, 2021affected < 4.14.2_04-3.9.1fixed 4.14.2_04-3.9.1
xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond what an administrator originally
Page 3 of 4