Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2012:1132-1)
Summary:The remote host is missing an update for the 'Xen' package(s) announced via the SUSE-SU-2012:1132-1 advisory.
The remote host is missing an update for the 'Xen' package(s) announced via the SUSE-SU-2012:1132-1 advisory.

Vulnerability Insight:
XEN was updated 4.1.3 to fix multiple bugs and security issues.

The following security issues have been fixed:

* CVE-2012-3494: xen: hypercall set_debugreg vulnerability (XSA-12)
* CVE-2012-3495: xen: hypercall physdev_get_free_pirq vulnerability (XSA-13)
* CVE-2012-3496: xen: XENMEM_populate_physmap DoS vulnerability (XSA-14)
* CVE-2012-3498: xen: PHYSDEVOP_map_pirq index vulnerability (XSA-16)
* CVE-2012-3515: xen: Qemu VT100 emulation vulnerability (XSA-17)

Also the following bugs have been fixed:

* pvscsi support of attaching Luns - bnc#776995

The following related bugs in vm-install 0.5.12 have been fixed:

* bnc#776300 - vm-install does not pass --extra-args in
* Add for support Open Enterprise Server 11
* Add support for Windows 8 and Windows Server 2012
* Add support for Ubuntu 12 (Precise Pangolin)

Security Issue references:

* CVE-2012-3496
* CVE-2012-3494
* CVE-2012-3495
* CVE-2012-3498
* CVE-2012-3515

Affected Software/OS:
'Xen' package(s) on SUSE Linux Enterprise Software Development Kit 11 SP2, SUSE Linux Enterprise Server 11 SP2, SUSE Linux Enterprise Desktop 11 SP2

Please install the updated package(s).

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2012-3494
BugTraq ID: 55400
Debian Security Information: DSA-2544 (Google Search)
SuSE Security Announcement: SUSE-SU-2012:1129 (Google Search)
SuSE Security Announcement: SUSE-SU-2012:1132 (Google Search)
SuSE Security Announcement: SUSE-SU-2012:1133 (Google Search)
SuSE Security Announcement: SUSE-SU-2012:1135 (Google Search)
SuSE Security Announcement: SUSE-SU-2012:1162 (Google Search)
SuSE Security Announcement: openSUSE-SU-2012:1172 (Google Search)
SuSE Security Announcement: openSUSE-SU-2012:1174 (Google Search)
SuSE Security Announcement: openSUSE-SU-2012:1572 (Google Search)
SuSE Security Announcement: openSUSE-SU-2012:1573 (Google Search)
XForce ISS Database: xen-setdebugreg-dos(78265)
Common Vulnerability Exposure (CVE) ID: CVE-2012-3495
BugTraq ID: 55406
Common Vulnerability Exposure (CVE) ID: CVE-2012-3496
BugTraq ID: 55412
XForce ISS Database: xen-xenmempopulatephysmap-dos(78267)
Common Vulnerability Exposure (CVE) ID: CVE-2012-3498
BugTraq ID: 55414
XForce ISS Database: xen-physdevopmappirq-dos(78269)
Common Vulnerability Exposure (CVE) ID: CVE-2012-3515
BugTraq ID: 55413
Debian Security Information: DSA-2543 (Google Search)
Debian Security Information: DSA-2545 (Google Search)
RedHat Security Advisories: RHSA-2012:1233
RedHat Security Advisories: RHSA-2012:1234
RedHat Security Advisories: RHSA-2012:1235
RedHat Security Advisories: RHSA-2012:1236
RedHat Security Advisories: RHSA-2012:1262
RedHat Security Advisories: RHSA-2012:1325
SuSE Security Announcement: SUSE-SU-2012:1202 (Google Search)
SuSE Security Announcement: SUSE-SU-2012:1203 (Google Search)
SuSE Security Announcement: SUSE-SU-2012:1205 (Google Search)
SuSE Security Announcement: SUSE-SU-2012:1320 (Google Search)
SuSE Security Announcement: openSUSE-SU-2012:1153 (Google Search)
SuSE Security Announcement: openSUSE-SU-2012:1170 (Google Search)
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.