Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2018:2482-1)
Summary:The remote host is missing an update for the 'xen' package(s) announced via the SUSE-SU-2018:2482-1 advisory.
The remote host is missing an update for the 'xen' package(s) announced via the SUSE-SU-2018:2482-1 advisory.

Vulnerability Insight:
This update for xen fixes the following issues:
This security issue was fixed:
- CVE-2018-3646: Systems with microprocessors utilizing speculative
execution and address translations may have allowed unauthorized
disclosure of information residing in the L1 data cache to an attacker
with local user access with guest OS privilege via a terminal page fault
and a side-channel analysis (bsc#1091107, bsc#1027519).
These non-security issues were fixed:
- bsc#1102116: SSBD is not virtualized for guests
- bsc#1092631: Preserve the xl dmesg output after boot for determining
what speculative mitigations have been detected by the hypervisor.
- bsc#1101684: Make xen able to disable the visibility of the new CPU

Affected Software/OS:
'xen' package(s) on SUSE Linux Enterprise Software Development Kit 11-SP4, SUSE Linux Enterprise Server 11-SP4, SUSE Linux Enterprise Debuginfo 11-SP4

Please install the updated package(s).

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2018-3646
BugTraq ID: 105080
CERT/CC vulnerability note: VU#982149
Cisco Security Advisory: 20180814 CPU Side-Channel Information Disclosure Vulnerabilities: August 2018
Debian Security Information: DSA-4274 (Google Search)
Debian Security Information: DSA-4279 (Google Search)
FreeBSD Security Advisory: FreeBSD-SA-18:09
RedHat Security Advisories: RHSA-2018:2384
RedHat Security Advisories: RHSA-2018:2387
RedHat Security Advisories: RHSA-2018:2388
RedHat Security Advisories: RHSA-2018:2389
RedHat Security Advisories: RHSA-2018:2390
RedHat Security Advisories: RHSA-2018:2391
RedHat Security Advisories: RHSA-2018:2392
RedHat Security Advisories: RHSA-2018:2393
RedHat Security Advisories: RHSA-2018:2394
RedHat Security Advisories: RHSA-2018:2395
RedHat Security Advisories: RHSA-2018:2396
RedHat Security Advisories: RHSA-2018:2402
RedHat Security Advisories: RHSA-2018:2403
RedHat Security Advisories: RHSA-2018:2404
RedHat Security Advisories: RHSA-2018:2602
RedHat Security Advisories: RHSA-2018:2603
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.