SUSE-SU-2019:2753-1 -- SLES xenID: oval:org.secpod.oval:def:89003334 | Date: (C)2021-02-27 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for xen to version 4.11.2 fixes the following issues: Security issues fixed: - CVE-2019-15890: Fixed a use-after-free in SLiRP networking implementation of QEMU emulator which could have led to Denial of Service . - CVE-2019-12068: Fixed an issue in lsi which could lead to an infinite loop and denial of service . - CVE-2019-14378: Fixed a heap buffer overflow in SLiRp networking implementation of QEMU emulator which could have led to execution of arbitrary code with privileges of the QEMU process . Other issues fixed: - Fixed an HPS bug which did not allow to install Windows Server 2016 with 2 CPUs setting or above . - Fixed a segmentation fault in Libvrtd during live migration to a VM . - Fixed an issue where libxenlight could not create new domain . - Fixed an issue where attached pci devices were lost after reboot . - Fixed an issue where Xen could not pre-allocate 1 shadow page .
Platform: |
SUSE Linux Enterprise Server 12 SP4 |