Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2014-4021 (GCVE-0-2014-4021)
Vulnerability from cvelistv5
Published
2014-06-18 19:00
Modified
2024-08-06 11:04
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T11:04:27.839Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "FEDORA-2014-7722",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html"
},
{
"name": "openSUSE-SU-2014:1281",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html"
},
{
"name": "60471",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60471"
},
{
"name": "60027",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60027"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://linux.oracle.com/errata/ELSA-2014-0926.html"
},
{
"name": "openSUSE-SU-2014:1279",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://linux.oracle.com/errata/ELSA-2014-0926-1.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://support.citrix.com/article/CTX140984"
},
{
"name": "1030442",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1030442"
},
{
"name": "GLSA-201407-03",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-201407-03.xml"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://xenbits.xen.org/xsa/advisory-100.html"
},
{
"name": "60130",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60130"
},
{
"name": "DSA-3006",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2014/dsa-3006"
},
{
"name": "68070",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/68070"
},
{
"name": "59208",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59208"
},
{
"name": "FEDORA-2014-7734",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-06-17T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-01-05T14:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "FEDORA-2014-7722",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html"
},
{
"name": "openSUSE-SU-2014:1281",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html"
},
{
"name": "60471",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60471"
},
{
"name": "60027",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60027"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://linux.oracle.com/errata/ELSA-2014-0926.html"
},
{
"name": "openSUSE-SU-2014:1279",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://linux.oracle.com/errata/ELSA-2014-0926-1.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://support.citrix.com/article/CTX140984"
},
{
"name": "1030442",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1030442"
},
{
"name": "GLSA-201407-03",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-201407-03.xml"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://xenbits.xen.org/xsa/advisory-100.html"
},
{
"name": "60130",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60130"
},
{
"name": "DSA-3006",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2014/dsa-3006"
},
{
"name": "68070",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/68070"
},
{
"name": "59208",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59208"
},
{
"name": "FEDORA-2014-7734",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2014-4021",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "FEDORA-2014-7722",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html"
},
{
"name": "openSUSE-SU-2014:1281",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html"
},
{
"name": "60471",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60471"
},
{
"name": "60027",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60027"
},
{
"name": "http://linux.oracle.com/errata/ELSA-2014-0926.html",
"refsource": "CONFIRM",
"url": "http://linux.oracle.com/errata/ELSA-2014-0926.html"
},
{
"name": "openSUSE-SU-2014:1279",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html"
},
{
"name": "http://linux.oracle.com/errata/ELSA-2014-0926-1.html",
"refsource": "CONFIRM",
"url": "http://linux.oracle.com/errata/ELSA-2014-0926-1.html"
},
{
"name": "http://support.citrix.com/article/CTX140984",
"refsource": "CONFIRM",
"url": "http://support.citrix.com/article/CTX140984"
},
{
"name": "1030442",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1030442"
},
{
"name": "GLSA-201407-03",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201407-03.xml"
},
{
"name": "http://xenbits.xen.org/xsa/advisory-100.html",
"refsource": "CONFIRM",
"url": "http://xenbits.xen.org/xsa/advisory-100.html"
},
{
"name": "60130",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60130"
},
{
"name": "DSA-3006",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2014/dsa-3006"
},
{
"name": "68070",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/68070"
},
{
"name": "59208",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59208"
},
{
"name": "FEDORA-2014-7734",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2014-4021",
"datePublished": "2014-06-18T19:00:00",
"dateReserved": "2014-06-11T00:00:00",
"dateUpdated": "2024-08-06T11:04:27.839Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2014-4021\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2014-06-18T19:55:04.920\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.\"},{\"lang\":\"es\",\"value\":\"Xen 3.2.x hasta 4.4.x no limpia debidamente las p\u00e1ginas de memoria recuperadas de invitados, lo que permite a usuarios locales del sistema operativo invitado obtener informaci\u00f3n sensible a trav\u00e9s de vectores no especificados.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:A/AC:L/Au:S/C:P/I:N/A:N\",\"baseScore\":2.7,\"accessVector\":\"ADJACENT_NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":5.1,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:3.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B81B6EEB-D01E-432D-AEBF-707409741C0A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:3.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A4B60DE-A8C0-459E-A99C-6EF0D3264B75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:3.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A83F4F7E-53CF-4066-857B-2154D25979D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:3.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"048E790E-B0A1-4504-9299-0B6D9CB0C509\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"550223A9-B9F1-440A-8C25-9F0F76AF7301\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC734D58-96E5-4DD2-8781-F8E0ADB96462\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62CEC1BF-1922-410D-BCBA-C58199F574C7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"923F2C2B-4A65-4823-B511-D0FEB7C7FAB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1A24DED-B2EC-4D9C-9FA4-DD37EF3E3BFC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D532B60-C8DD-4A2F-9D05-E574D23EB754\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D83CA8B-8E49-45FA-8FAB-C15052474542\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"27537DF5-7E0F-463F-BA87-46E329EE07AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EA4F978-9145-4FE6-B4F9-15207E52C40A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22A995FD-9B7F-4DF0-BECF-4B086E470F1E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"219597E2-E2D7-4647-8A7C-688B96300158\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.1.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65E55950-EACA-4209-B2A1-E09026FC6006\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F0AF8EF-6FF6-4E22-B16E-82C9F90C6B00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"47640819-FC43-49ED-8A77-728C3D7255B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2448537F-87AD-45C1-9FB0-7A49CA31BD76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E36B2265-70E1-413B-A7CF-79D39E9ADCFB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF948E6A-07BE-4C7D-8A98-002E89D35F4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C0E23B94-1726-4F63-84BB-8D83FAB156D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1044792C-D544-457C-9391-4F3B5BAB978D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:4.4.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF23B21B-594A-42E2-AF90-D5C4246B39A4\"}]}]}],\"references\":[{\"url\":\"http://linux.oracle.com/errata/ELSA-2014-0926-1.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://linux.oracle.com/errata/ELSA-2014-0926.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/59208\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/60027\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/60130\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/60471\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-201407-03.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://support.citrix.com/article/CTX140984\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2014/dsa-3006\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/68070\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id/1030442\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://xenbits.xen.org/xsa/advisory-100.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://linux.oracle.com/errata/ELSA-2014-0926-1.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://linux.oracle.com/errata/ELSA-2014-0926.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/59208\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60027\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60130\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60471\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-201407-03.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://support.citrix.com/article/CTX140984\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2014/dsa-3006\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/68070\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id/1030442\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://xenbits.xen.org/xsa/advisory-100.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}"
}
}
rhsa-2014:0926
Vulnerability from csaf_redhat
Published
2014-07-23 16:04
Modified
2024-11-22 08:19
Summary
Red Hat Security Advisory: kernel security and bug fix update
Notes
Topic
Updated kernel packages that fix two security issues and several bugs are
now available for Red Hat Enterprise Linux 5.
The Red Hat Security Response Team has rated this update as having
Moderate security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
* A NULL pointer dereference flaw was found in the rds_iw_laddr_check()
function in the Linux kernel's implementation of Reliable Datagram Sockets
(RDS). A local, unprivileged user could use this flaw to crash the system.
(CVE-2014-2678, Moderate)
* It was found that the Xen hypervisor implementation did not properly
clean memory pages previously allocated by the hypervisor. A privileged
guest user could potentially use this flaw to read data relating to other
guests or the hypervisor itself. (CVE-2014-4021, Moderate)
Red Hat would like to thank the Xen project for reporting CVE-2014-4021.
Upstream acknowledges Jan Beulich as the original reporter.
This update also fixes the following bugs:
* A bug in the journaling block device (jbd and jbd2) code could, under
certain circumstances, trigger a BUG_ON() assertion and result in a kernel
oops. This happened when an application performed an extensive number of
commits to the journal of the ext3 file system and there was no currently
active transaction while synchronizing the file's in-core state. This
problem has been resolved by correcting respective test conditions in the
jbd and jbd2 code. (BZ#1097528)
* After a statically defined gateway became unreachable and its
corresponding neighbor entry entered a FAILED state, the gateway stayed in
the FAILED state even after it became reachable again. As a consequence,
traffic was not routed through that gateway. This update allows probing
such a gateway automatically so that the traffic can be routed through
this gateway again once it becomes reachable. (BZ#1106354)
* Due to an incorrect condition check in the IPv6 code, the ipv6 driver
was unable to correctly assemble incoming packet fragments, which resulted
in a high IPv6 packet loss rate. This update fixes the said check for a
fragment overlap and ensures that incoming IPv6 packet fragments are now
processed as expected. (BZ#1107932)
* Recent changes in the d_splice_alias() function introduced a bug that
allowed d_splice_alias() to return a dentry from a different directory
than the directory being looked up. As a consequence in cluster
environment, a kernel panic could be triggered when a directory was being
removed while a concurrent cross-directory operation was performed on this
directory on another cluster node. This update avoids the kernel panic in
this situation by correcting the search logic in the d_splice_alias()
function so that the function can no longer return a dentry from an
incorrect directory. (BZ#1109720)
* The NFSv4 server did not handle multiple OPEN operations to the same file
separately, which could cause the NFSv4 client to repeatedly send CLOSE
requests with the same state ID, even though the NFS server rejected the
request with an NFS4ERR_OLD_STATEID (10024) error code. This update
ensures that the NFSv4 client no longer re-sends the same CLOSE request
after receiving NFS4ERR_OLD_STATEID. (BZ#1113468)
All kernel users are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. The system must be
rebooted for this update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated kernel packages that fix two security issues and several bugs are\nnow available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nModerate security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* A NULL pointer dereference flaw was found in the rds_iw_laddr_check()\nfunction in the Linux kernel\u0027s implementation of Reliable Datagram Sockets\n(RDS). A local, unprivileged user could use this flaw to crash the system.\n(CVE-2014-2678, Moderate)\n\n* It was found that the Xen hypervisor implementation did not properly\nclean memory pages previously allocated by the hypervisor. A privileged\nguest user could potentially use this flaw to read data relating to other\nguests or the hypervisor itself. (CVE-2014-4021, Moderate)\n\nRed Hat would like to thank the Xen project for reporting CVE-2014-4021.\nUpstream acknowledges Jan Beulich as the original reporter.\n\nThis update also fixes the following bugs:\n\n* A bug in the journaling block device (jbd and jbd2) code could, under\ncertain circumstances, trigger a BUG_ON() assertion and result in a kernel\noops. This happened when an application performed an extensive number of\ncommits to the journal of the ext3 file system and there was no currently\nactive transaction while synchronizing the file\u0027s in-core state. This\nproblem has been resolved by correcting respective test conditions in the\njbd and jbd2 code. (BZ#1097528)\n\n* After a statically defined gateway became unreachable and its\ncorresponding neighbor entry entered a FAILED state, the gateway stayed in\nthe FAILED state even after it became reachable again. As a consequence,\ntraffic was not routed through that gateway. This update allows probing\nsuch a gateway automatically so that the traffic can be routed through\nthis gateway again once it becomes reachable. (BZ#1106354)\n\n* Due to an incorrect condition check in the IPv6 code, the ipv6 driver\nwas unable to correctly assemble incoming packet fragments, which resulted\nin a high IPv6 packet loss rate. This update fixes the said check for a\nfragment overlap and ensures that incoming IPv6 packet fragments are now\nprocessed as expected. (BZ#1107932)\n\n* Recent changes in the d_splice_alias() function introduced a bug that\nallowed d_splice_alias() to return a dentry from a different directory\nthan the directory being looked up. As a consequence in cluster\nenvironment, a kernel panic could be triggered when a directory was being\nremoved while a concurrent cross-directory operation was performed on this\ndirectory on another cluster node. This update avoids the kernel panic in\nthis situation by correcting the search logic in the d_splice_alias()\nfunction so that the function can no longer return a dentry from an\nincorrect directory. (BZ#1109720)\n\n* The NFSv4 server did not handle multiple OPEN operations to the same file\nseparately, which could cause the NFSv4 client to repeatedly send CLOSE\nrequests with the same state ID, even though the NFS server rejected the\nrequest with an NFS4ERR_OLD_STATEID (10024) error code. This update\nensures that the NFSv4 client no longer re-sends the same CLOSE request\nafter receiving NFS4ERR_OLD_STATEID. (BZ#1113468)\n\nAll kernel users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. The system must be\nrebooted for this update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2014:0926",
"url": "https://access.redhat.com/errata/RHSA-2014:0926"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1083274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1083274"
},
{
"category": "external",
"summary": "1103646",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1103646"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0926.json"
}
],
"title": "Red Hat Security Advisory: kernel security and bug fix update",
"tracking": {
"current_release_date": "2024-11-22T08:19:03+00:00",
"generator": {
"date": "2024-11-22T08:19:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2014:0926",
"initial_release_date": "2014-07-23T16:04:26+00:00",
"revision_history": [
{
"date": "2014-07-23T16:04:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2014-07-23T16:04:27+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T08:19:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product": {
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-PAE@2.6.18-371.11.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-xen-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-xen-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen@2.6.18-371.11.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-371.11.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-PAE-debuginfo@2.6.18-371.11.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-371.11.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-371.11.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-371.11.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-371.11.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-debug-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@2.6.18-371.11.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-PAE-devel@2.6.18-371.11.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-371.11.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-371.11.1.el5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.18-371.11.1.el5.i686",
"product": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.i686",
"product_id": "kernel-devel-0:2.6.18-371.11.1.el5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@2.6.18-371.11.1.el5?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-headers-0:2.6.18-371.11.1.el5.i386",
"product": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.i386",
"product_id": "kernel-headers-0:2.6.18-371.11.1.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.18-371.11.1.el5?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"product": {
"name": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"product_id": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-371.11.1.el5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"product": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"product_id": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-371.11.1.el5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"product": {
"name": "kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"product_id": "kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-371.11.1.el5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"product": {
"name": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"product_id": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-371.11.1.el5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"product": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"product_id": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-371.11.1.el5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.18-371.11.1.el5.ppc64",
"product": {
"name": "kernel-0:2.6.18-371.11.1.el5.ppc64",
"product_id": "kernel-0:2.6.18-371.11.1.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-371.11.1.el5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"product": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"product_id": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-371.11.1.el5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"product": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"product_id": "kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.18-371.11.1.el5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"product": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"product_id": "kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@2.6.18-371.11.1.el5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"product": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"product_id": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-371.11.1.el5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"product": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"product_id": "kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@2.6.18-371.11.1.el5?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"product": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"product_id": "kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.18-371.11.1.el5?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"product": {
"name": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"product_id": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump-debuginfo@2.6.18-371.11.1.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"product": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"product_id": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-371.11.1.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"product": {
"name": "kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"product_id": "kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump@2.6.18-371.11.1.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"product": {
"name": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"product_id": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-kdump-devel@2.6.18-371.11.1.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"product": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"product_id": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-371.11.1.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.18-371.11.1.el5.s390x",
"product": {
"name": "kernel-0:2.6.18-371.11.1.el5.s390x",
"product_id": "kernel-0:2.6.18-371.11.1.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-371.11.1.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"product": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"product_id": "kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-371.11.1.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"product": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"product_id": "kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.18-371.11.1.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"product": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"product_id": "kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@2.6.18-371.11.1.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"product": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"product_id": "kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-371.11.1.el5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"product": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"product_id": "kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@2.6.18-371.11.1.el5?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"product": {
"name": "kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"product_id": "kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen@2.6.18-371.11.1.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"product": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"product_id": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-371.11.1.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"product": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"product_id": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-371.11.1.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"product": {
"name": "kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"product_id": "kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-371.11.1.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.18-371.11.1.el5.ia64",
"product": {
"name": "kernel-0:2.6.18-371.11.1.el5.ia64",
"product_id": "kernel-0:2.6.18-371.11.1.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-371.11.1.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"product": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"product_id": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-371.11.1.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"product": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"product_id": "kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.18-371.11.1.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"product": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"product_id": "kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@2.6.18-371.11.1.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"product": {
"name": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"product_id": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-371.11.1.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"product": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"product_id": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-371.11.1.el5?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"product": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"product_id": "kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@2.6.18-371.11.1.el5?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"product": {
"name": "kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"product_id": "kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen@2.6.18-371.11.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"product": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"product_id": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common@2.6.18-371.11.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"product": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"product_id": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@2.6.18-371.11.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64",
"product": {
"name": "kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64",
"product_id": "kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-devel@2.6.18-371.11.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:2.6.18-371.11.1.el5.x86_64",
"product": {
"name": "kernel-0:2.6.18-371.11.1.el5.x86_64",
"product_id": "kernel-0:2.6.18-371.11.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-371.11.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"product": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"product_id": "kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@2.6.18-371.11.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"product": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"product_id": "kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-headers@2.6.18-371.11.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"product": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"product_id": "kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@2.6.18-371.11.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"product": {
"name": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"product_id": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-xen-debuginfo@2.6.18-371.11.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"product": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"product_id": "kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@2.6.18-371.11.1.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"product": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"product_id": "kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@2.6.18-371.11.1.el5?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-0:2.6.18-371.11.1.el5.src",
"product": {
"name": "kernel-0:2.6.18-371.11.1.el5.src",
"product_id": "kernel-0:2.6.18-371.11.1.el5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@2.6.18-371.11.1.el5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"product": {
"name": "kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"product_id": "kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@2.6.18-371.11.1.el5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-371.11.1.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src"
},
"product_reference": "kernel-0:2.6.18-371.11.1.el5.src",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-PAE-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-debug-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-devel-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:2.6.18-371.11.1.el5.noarch as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch"
},
"product_reference": "kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386"
},
"product_reference": "kernel-headers-0:2.6.18-371.11.1.el5.i386",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc"
},
"product_reference": "kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-xen-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Client-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-371.11.1.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src"
},
"product_reference": "kernel-0:2.6.18-371.11.1.el5.src",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-PAE-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-debug-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-devel-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:2.6.18-371.11.1.el5.noarch as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch"
},
"product_reference": "kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386"
},
"product_reference": "kernel-headers-0:2.6.18-371.11.1.el5.i386",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc"
},
"product_reference": "kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64"
},
"product_reference": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x"
},
"product_reference": "kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-xen-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-0:2.6.18-371.11.1.el5.i686 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686"
},
"product_reference": "kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64"
},
"product_reference": "kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"relates_to_product_reference": "5Server-5.10.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64"
},
"product_reference": "kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64",
"relates_to_product_reference": "5Server-5.10.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-2678",
"discovery_date": "2014-03-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1083274"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference flaw was found in the rds_iw_laddr_check() function in the Linux kernel\u0027s implementation of Reliable Datagram Sockets (RDS). A local, unprivileged user could use this flaw to crash the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: net: rds: dereference of a NULL device in rds_iw_laddr_check()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-2678"
},
{
"category": "external",
"summary": "RHBZ#1083274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1083274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-2678",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-2678"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-2678",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2678"
}
],
"release_date": "2014-03-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-07-23T16:04:26+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not use\n\"rpm -Uvh\" as that will remove the running kernel binaries from your\nsystem. You may use \"rpm -e\" to remove old kernels after determining that\nthe new kernel functions properly on your system.",
"product_ids": [
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0926"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 4.7,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"products": [
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: net: rds: dereference of a NULL device in rds_iw_laddr_check()"
},
{
"acknowledgments": [
{
"names": [
"Xen project"
]
},
{
"names": [
"Jan Beulich"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2014-4021",
"cwe": {
"id": "CWE-244",
"name": "Improper Clearing of Heap Memory Before Release (\u0027Heap Inspection\u0027)"
},
"discovery_date": "2014-05-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1103646"
}
],
"notes": [
{
"category": "description",
"text": "It was found that the Xen hypervisor implementation did not properly clean memory pages previously allocated by the hypervisor. A privileged guest user could potentially use this flaw to read data relating to other guests or the hypervisor itself.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "xen: Hypervisor heap contents leaked to guests (xsa-100)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-4021"
},
{
"category": "external",
"summary": "RHBZ#1103646",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1103646"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-4021",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-4021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-4021"
}
],
"release_date": "2014-06-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-07-23T16:04:26+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258\n\nTo install kernel packages manually, use \"rpm -ivh [package]\". Do not use\n\"rpm -Uvh\" as that will remove the running kernel binaries from your\nsystem. You may use \"rpm -e\" to remove old kernels after determining that\nthe new kernel functions properly on your system.",
"product_ids": [
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64"
],
"restart_required": {
"category": "machine"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0926"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 2.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:M/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src",
"5Client-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Client-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"5Client-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.src",
"5Server-5.10.Z:kernel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-PAE-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-PAE-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-PAE-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debug-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-debuginfo-common-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-devel-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-doc-0:2.6.18-371.11.1.el5.noarch",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.i386",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-headers-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-debuginfo-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.ppc64",
"5Server-5.10.Z:kernel-kdump-devel-0:2.6.18-371.11.1.el5.s390x",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-debuginfo-0:2.6.18-371.11.1.el5.x86_64",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.i686",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.ia64",
"5Server-5.10.Z:kernel-xen-devel-0:2.6.18-371.11.1.el5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "xen: Hypervisor heap contents leaked to guests (xsa-100)"
}
]
}
suse-su-2015:0940-1
Vulnerability from csaf_suse
Published
2012-11-22 17:59
Modified
2012-11-22 17:59
Summary
Security update for Xen
Notes
Title of the patch
Security update for Xen
Description of the patch
This update fixes the following security issues in Xen:
* CVE-2012-5510: Grant table version switch list corruption
vulnerability (XSA-26)
* CVE-2012-5511: Several HVM operations do not validate the range of
their inputs (XSA-27)
* CVE-2012-5513: XENMEM_exchange may overwrite hypervisor memory
(XSA-29)
* CVE-2012-5514: Missing unlock in
guest_physmap_mark_populate_on_demand() (XSA-30)
* CVE-2012-5515: Several memory hypercall operations allow invalid
extent order values (XSA-31)
Also the following fix has been applied:
* bnc#777628 - guest 'disappears' after live migration
Updated block-dmmd script
Security Issues references:
* CVE-2012-5513
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5513>
* CVE-2012-5514
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5514>
* CVE-2012-5511
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5511>
* CVE-2012-5510
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5510>
* CVE-2012-5515
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5515>
Patchnames
slessp1-xen
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for Xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update fixes the following security issues in Xen:\n\n * CVE-2012-5510: Grant table version switch list corruption\n vulnerability (XSA-26)\n * CVE-2012-5511: Several HVM operations do not validate the range of\n their inputs (XSA-27)\n * CVE-2012-5513: XENMEM_exchange may overwrite hypervisor memory\n (XSA-29)\n * CVE-2012-5514: Missing unlock in\n guest_physmap_mark_populate_on_demand() (XSA-30)\n * CVE-2012-5515: Several memory hypercall operations allow invalid\n extent order values (XSA-31)\n\nAlso the following fix has been applied:\n\n * bnc#777628 - guest \u0027disappears\u0027 after live migration\n Updated block-dmmd script\n\nSecurity Issues references:\n\n * CVE-2012-5513\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5513\u003e\n * CVE-2012-5514\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5514\u003e\n * CVE-2012-5511\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5511\u003e\n * CVE-2012-5510\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5510\u003e\n * CVE-2012-5515\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5515\u003e\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "slessp1-xen",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0940-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:0940-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150940-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:0940-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-May/001404.html"
},
{
"category": "self",
"summary": "SUSE Bug 777628",
"url": "https://bugzilla.suse.com/777628"
},
{
"category": "self",
"summary": "SUSE Bug 789944",
"url": "https://bugzilla.suse.com/789944"
},
{
"category": "self",
"summary": "SUSE Bug 789945",
"url": "https://bugzilla.suse.com/789945"
},
{
"category": "self",
"summary": "SUSE Bug 789948",
"url": "https://bugzilla.suse.com/789948"
},
{
"category": "self",
"summary": "SUSE Bug 789950",
"url": "https://bugzilla.suse.com/789950"
},
{
"category": "self",
"summary": "SUSE Bug 789951",
"url": "https://bugzilla.suse.com/789951"
},
{
"category": "self",
"summary": "SUSE Bug 826717",
"url": "https://bugzilla.suse.com/826717"
},
{
"category": "self",
"summary": "SUSE Bug 880751",
"url": "https://bugzilla.suse.com/880751"
},
{
"category": "self",
"summary": "SUSE Bug 895798",
"url": "https://bugzilla.suse.com/895798"
},
{
"category": "self",
"summary": "SUSE Bug 895799",
"url": "https://bugzilla.suse.com/895799"
},
{
"category": "self",
"summary": "SUSE Bug 895802",
"url": "https://bugzilla.suse.com/895802"
},
{
"category": "self",
"summary": "SUSE Bug 903850",
"url": "https://bugzilla.suse.com/903850"
},
{
"category": "self",
"summary": "SUSE Bug 903967",
"url": "https://bugzilla.suse.com/903967"
},
{
"category": "self",
"summary": "SUSE Bug 903970",
"url": "https://bugzilla.suse.com/903970"
},
{
"category": "self",
"summary": "SUSE Bug 905465",
"url": "https://bugzilla.suse.com/905465"
},
{
"category": "self",
"summary": "SUSE Bug 905467",
"url": "https://bugzilla.suse.com/905467"
},
{
"category": "self",
"summary": "SUSE Bug 906439",
"url": "https://bugzilla.suse.com/906439"
},
{
"category": "self",
"summary": "SUSE Bug 927967",
"url": "https://bugzilla.suse.com/927967"
},
{
"category": "self",
"summary": "SUSE Bug 929339",
"url": "https://bugzilla.suse.com/929339"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-5510 page",
"url": "https://www.suse.com/security/cve/CVE-2012-5510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-5511 page",
"url": "https://www.suse.com/security/cve/CVE-2012-5511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-5513 page",
"url": "https://www.suse.com/security/cve/CVE-2012-5513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-5514 page",
"url": "https://www.suse.com/security/cve/CVE-2012-5514/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-5515 page",
"url": "https://www.suse.com/security/cve/CVE-2012-5515/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-3495 page",
"url": "https://www.suse.com/security/cve/CVE-2013-3495/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-4021 page",
"url": "https://www.suse.com/security/cve/CVE-2014-4021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-7154 page",
"url": "https://www.suse.com/security/cve/CVE-2014-7154/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-7155 page",
"url": "https://www.suse.com/security/cve/CVE-2014-7155/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-7156 page",
"url": "https://www.suse.com/security/cve/CVE-2014-7156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8594 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8594/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8595 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8866 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8866/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8867 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8867/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9030 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3340 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3340/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3456 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3456/"
}
],
"title": "Security update for Xen",
"tracking": {
"current_release_date": "2012-11-22T17:59:15Z",
"generator": {
"date": "2012-11-22T17:59:15Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:0940-1",
"initial_release_date": "2012-11-22T17:59:15Z",
"revision_history": [
{
"date": "2012-11-22T17:59:15Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.0.3_21548_12-0.3.1.i586",
"product": {
"name": "xen-4.0.3_21548_12-0.3.1.i586",
"product_id": "xen-4.0.3_21548_12-0.3.1.i586"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"product": {
"name": "xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"product_id": "xen-doc-html-4.0.3_21548_12-0.3.1.i586"
}
},
{
"category": "product_version",
"name": "xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"product": {
"name": "xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"product_id": "xen-doc-pdf-4.0.3_21548_12-0.3.1.i586"
}
},
{
"category": "product_version",
"name": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"product": {
"name": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"product_id": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586"
}
},
{
"category": "product_version",
"name": "xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"product": {
"name": "xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"product_id": "xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586"
}
},
{
"category": "product_version",
"name": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"product": {
"name": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"product_id": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.0.3_21548_12-0.3.1.i586",
"product": {
"name": "xen-libs-4.0.3_21548_12-0.3.1.i586",
"product_id": "xen-libs-4.0.3_21548_12-0.3.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-4.0.3_21548_12-0.3.1.i586",
"product": {
"name": "xen-tools-4.0.3_21548_12-0.3.1.i586",
"product_id": "xen-tools-4.0.3_21548_12-0.3.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"product": {
"name": "xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"product_id": "xen-tools-domU-4.0.3_21548_12-0.3.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.0.3_21548_12-0.3.1.x86_64",
"product": {
"name": "xen-4.0.3_21548_12-0.3.1.x86_64",
"product_id": "xen-4.0.3_21548_12-0.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"product": {
"name": "xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"product_id": "xen-doc-html-4.0.3_21548_12-0.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"product": {
"name": "xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"product_id": "xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"product": {
"name": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"product_id": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"product": {
"name": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"product_id": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"product": {
"name": "xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"product_id": "xen-libs-4.0.3_21548_12-0.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"product": {
"name": "xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"product_id": "xen-tools-4.0.3_21548_12-0.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"product": {
"name": "xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"product_id": "xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles_ltss:11:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:sp1:teradata"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.0.3_21548_12-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586"
},
"product_reference": "xen-4.0.3_21548_12-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.0.3_21548_12-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64"
},
"product_reference": "xen-4.0.3_21548_12-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.0.3_21548_12-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586"
},
"product_reference": "xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.0.3_21548_12-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64"
},
"product_reference": "xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-pdf-4.0.3_21548_12-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586"
},
"product_reference": "xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64"
},
"product_reference": "xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586"
},
"product_reference": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64"
},
"product_reference": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586"
},
"product_reference": "xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586"
},
"product_reference": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64"
},
"product_reference": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.0.3_21548_12-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586"
},
"product_reference": "xen-libs-4.0.3_21548_12-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.0.3_21548_12-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64"
},
"product_reference": "xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.0.3_21548_12-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586"
},
"product_reference": "xen-tools-4.0.3_21548_12-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.0.3_21548_12-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64"
},
"product_reference": "xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.0.3_21548_12-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586"
},
"product_reference": "xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
},
"product_reference": "xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.0.3_21548_12-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586"
},
"product_reference": "xen-4.0.3_21548_12-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.0.3_21548_12-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64"
},
"product_reference": "xen-4.0.3_21548_12-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.0.3_21548_12-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586"
},
"product_reference": "xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.0.3_21548_12-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64"
},
"product_reference": "xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-pdf-4.0.3_21548_12-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586"
},
"product_reference": "xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64"
},
"product_reference": "xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586"
},
"product_reference": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64"
},
"product_reference": "xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586"
},
"product_reference": "xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586"
},
"product_reference": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64"
},
"product_reference": "xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.0.3_21548_12-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586"
},
"product_reference": "xen-libs-4.0.3_21548_12-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.0.3_21548_12-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64"
},
"product_reference": "xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.0.3_21548_12-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586"
},
"product_reference": "xen-tools-4.0.3_21548_12-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.0.3_21548_12-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64"
},
"product_reference": "xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.0.3_21548_12-0.3.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586"
},
"product_reference": "xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
},
"product_reference": "xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2012-5510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-5510"
}
],
"notes": [
{
"category": "general",
"text": "Xen 4.x, when downgrading the grant table version, does not properly remove the status page from the tracking list when freeing the page, which allows local guest OS administrators to cause a denial of service (hypervisor crash) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-5510",
"url": "https://www.suse.com/security/cve/CVE-2012-5510"
},
{
"category": "external",
"summary": "SUSE Bug 789945 for CVE-2012-5510",
"url": "https://bugzilla.suse.com/789945"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "moderate"
}
],
"title": "CVE-2012-5510"
},
{
"cve": "CVE-2012-5511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-5511"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based buffer overflow in the dirty video RAM tracking functionality in Xen 3.4 through 4.1 allows local HVM guest OS administrators to cause a denial of service (crash) via a large bitmap image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-5511",
"url": "https://www.suse.com/security/cve/CVE-2012-5511"
},
{
"category": "external",
"summary": "SUSE Bug 789944 for CVE-2012-5511",
"url": "https://bugzilla.suse.com/789944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "moderate"
}
],
"title": "CVE-2012-5511"
},
{
"cve": "CVE-2012-5513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-5513"
}
],
"notes": [
{
"category": "general",
"text": "The XENMEM_exchange handler in Xen 4.2 and earlier does not properly check the memory address, which allows local PV guest OS administrators to cause a denial of service (crash) or possibly gain privileges via unspecified vectors that overwrite memory in the hypervisor reserved range.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-5513",
"url": "https://www.suse.com/security/cve/CVE-2012-5513"
},
{
"category": "external",
"summary": "SUSE Bug 789951 for CVE-2012-5513",
"url": "https://bugzilla.suse.com/789951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "moderate"
}
],
"title": "CVE-2012-5513"
},
{
"cve": "CVE-2012-5514",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-5514"
}
],
"notes": [
{
"category": "general",
"text": "The guest_physmap_mark_populate_on_demand function in Xen 4.2 and earlier does not properly unlock the subject GFNs when checking if they are in use, which allows local guest HVM administrators to cause a denial of service (hang) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-5514",
"url": "https://www.suse.com/security/cve/CVE-2012-5514"
},
{
"category": "external",
"summary": "SUSE Bug 789948 for CVE-2012-5514",
"url": "https://bugzilla.suse.com/789948"
},
{
"category": "external",
"summary": "SUSE Bug 789988 for CVE-2012-5514",
"url": "https://bugzilla.suse.com/789988"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "moderate"
}
],
"title": "CVE-2012-5514"
},
{
"cve": "CVE-2012-5515",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-5515"
}
],
"notes": [
{
"category": "general",
"text": "The (1) XENMEM_decrease_reservation, (2) XENMEM_populate_physmap, and (3) XENMEM_exchange hypercalls in Xen 4.2 and earlier allow local guest administrators to cause a denial of service (long loop and hang) via a crafted extent_order value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-5515",
"url": "https://www.suse.com/security/cve/CVE-2012-5515"
},
{
"category": "external",
"summary": "SUSE Bug 789950 for CVE-2012-5515",
"url": "https://bugzilla.suse.com/789950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "moderate"
}
],
"title": "CVE-2012-5515"
},
{
"cve": "CVE-2013-3495",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-3495"
}
],
"notes": [
{
"category": "general",
"text": "The Intel VT-d Interrupt Remapping engine in Xen 3.3.x through 4.3.x allows local guests to cause a denial of service (kernel panic) via a malformed Message Signaled Interrupt (MSI) from a PCI device that is bus mastering capable that triggers a System Error Reporting (SERR) Non-Maskable Interrupt (NMI).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-3495",
"url": "https://www.suse.com/security/cve/CVE-2013-3495"
},
{
"category": "external",
"summary": "SUSE Bug 826717 for CVE-2013-3495",
"url": "https://bugzilla.suse.com/826717"
},
{
"category": "external",
"summary": "SUSE Bug 903970 for CVE-2013-3495",
"url": "https://bugzilla.suse.com/903970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "moderate"
}
],
"title": "CVE-2013-3495"
},
{
"cve": "CVE-2014-4021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-4021"
}
],
"notes": [
{
"category": "general",
"text": "Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-4021",
"url": "https://www.suse.com/security/cve/CVE-2014-4021"
},
{
"category": "external",
"summary": "SUSE Bug 880751 for CVE-2014-4021",
"url": "https://bugzilla.suse.com/880751"
},
{
"category": "external",
"summary": "SUSE Bug 903970 for CVE-2014-4021",
"url": "https://bugzilla.suse.com/903970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "low"
}
],
"title": "CVE-2014-4021"
},
{
"cve": "CVE-2014-7154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-7154"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in HVMOP_track_dirty_vram in Xen 4.0.0 through 4.4.x does not ensure possession of the guarding lock for dirty video RAM tracking, which allows certain local guest domains to cause a denial of service via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-7154",
"url": "https://www.suse.com/security/cve/CVE-2014-7154"
},
{
"category": "external",
"summary": "SUSE Bug 880751 for CVE-2014-7154",
"url": "https://bugzilla.suse.com/880751"
},
{
"category": "external",
"summary": "SUSE Bug 895798 for CVE-2014-7154",
"url": "https://bugzilla.suse.com/895798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "moderate"
}
],
"title": "CVE-2014-7154"
},
{
"cve": "CVE-2014-7155",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-7155"
}
],
"notes": [
{
"category": "general",
"text": "The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 4.4.x and earlier does not properly check supervisor mode permissions, which allows local HVM users to cause a denial of service (guest crash) or gain guest kernel mode privileges via vectors involving an (1) HLT, (2) LGDT, (3) LIDT, or (4) LMSW instruction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-7155",
"url": "https://www.suse.com/security/cve/CVE-2014-7155"
},
{
"category": "external",
"summary": "SUSE Bug 880751 for CVE-2014-7155",
"url": "https://bugzilla.suse.com/880751"
},
{
"category": "external",
"summary": "SUSE Bug 895799 for CVE-2014-7155",
"url": "https://bugzilla.suse.com/895799"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "moderate"
}
],
"title": "CVE-2014-7155"
},
{
"cve": "CVE-2014-7156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-7156"
}
],
"notes": [
{
"category": "general",
"text": "The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 3.3.x through 4.4.x does not check the supervisor mode permissions for instructions that generate software interrupts, which allows local HVM guest users to cause a denial of service (guest crash) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-7156",
"url": "https://www.suse.com/security/cve/CVE-2014-7156"
},
{
"category": "external",
"summary": "SUSE Bug 880751 for CVE-2014-7156",
"url": "https://bugzilla.suse.com/880751"
},
{
"category": "external",
"summary": "SUSE Bug 895802 for CVE-2014-7156",
"url": "https://bugzilla.suse.com/895802"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "low"
}
],
"title": "CVE-2014-7156"
},
{
"cve": "CVE-2014-8594",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8594"
}
],
"notes": [
{
"category": "general",
"text": "The do_mmu_update function in arch/x86/mm.c in Xen 4.x through 4.4.x does not properly restrict updates to only PV page tables, which allows remote PV guests to cause a denial of service (NULL pointer dereference) by leveraging hardware emulation services for HVM guests using Hardware Assisted Paging (HAP).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8594",
"url": "https://www.suse.com/security/cve/CVE-2014-8594"
},
{
"category": "external",
"summary": "SUSE Bug 903967 for CVE-2014-8594",
"url": "https://bugzilla.suse.com/903967"
},
{
"category": "external",
"summary": "SUSE Bug 903970 for CVE-2014-8594",
"url": "https://bugzilla.suse.com/903970"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "moderate"
}
],
"title": "CVE-2014-8594"
},
{
"cve": "CVE-2014-8595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8595"
}
],
"notes": [
{
"category": "general",
"text": "arch/x86/x86_emulate/x86_emulate.c in Xen 3.2.1 through 4.4.x does not properly check privileges, which allows local HVM guest users to gain privileges or cause a denial of service (crash) via a crafted (1) CALL, (2) JMP, (3) RETF, (4) LCALL, (5) LJMP, or (6) LRET far branch instruction.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8595",
"url": "https://www.suse.com/security/cve/CVE-2014-8595"
},
{
"category": "external",
"summary": "SUSE Bug 903970 for CVE-2014-8595",
"url": "https://bugzilla.suse.com/903970"
},
{
"category": "external",
"summary": "SUSE Bug 907649 for CVE-2014-8595",
"url": "https://bugzilla.suse.com/907649"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "low"
}
],
"title": "CVE-2014-8595"
},
{
"cve": "CVE-2014-8866",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8866"
}
],
"notes": [
{
"category": "general",
"text": "The compatibility mode hypercall argument translation in Xen 3.3.x through 4.4.x, when running on a 64-bit hypervisor, allows local 32-bit HVM guests to cause a denial of service (host crash) via vectors involving altering the high halves of registers while in 64-bit mode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8866",
"url": "https://www.suse.com/security/cve/CVE-2014-8866"
},
{
"category": "external",
"summary": "SUSE Bug 903970 for CVE-2014-8866",
"url": "https://bugzilla.suse.com/903970"
},
{
"category": "external",
"summary": "SUSE Bug 905465 for CVE-2014-8866",
"url": "https://bugzilla.suse.com/905465"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "moderate"
}
],
"title": "CVE-2014-8866"
},
{
"cve": "CVE-2014-8867",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8867"
}
],
"notes": [
{
"category": "general",
"text": "The acceleration support for the \"REP MOVS\" instruction in Xen 4.4.x, 3.2.x, and earlier lacks properly bounds checking for memory mapped I/O (MMIO) emulated in the hypervisor, which allows local HVM guests to cause a denial of service (host crash) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8867",
"url": "https://www.suse.com/security/cve/CVE-2014-8867"
},
{
"category": "external",
"summary": "SUSE Bug 903970 for CVE-2014-8867",
"url": "https://bugzilla.suse.com/903970"
},
{
"category": "external",
"summary": "SUSE Bug 905467 for CVE-2014-8867",
"url": "https://bugzilla.suse.com/905467"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "moderate"
}
],
"title": "CVE-2014-8867"
},
{
"cve": "CVE-2014-9030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9030"
}
],
"notes": [
{
"category": "general",
"text": "The do_mmu_update function in arch/x86/mm.c in Xen 3.2.x through 4.4.x does not properly manage page references, which allows remote domains to cause a denial of service by leveraging control over an HVM guest and a crafted MMU_MACHPHYS_UPDATE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9030",
"url": "https://www.suse.com/security/cve/CVE-2014-9030"
},
{
"category": "external",
"summary": "SUSE Bug 903970 for CVE-2014-9030",
"url": "https://bugzilla.suse.com/903970"
},
{
"category": "external",
"summary": "SUSE Bug 906439 for CVE-2014-9030",
"url": "https://bugzilla.suse.com/906439"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "important"
}
],
"title": "CVE-2014-9030"
},
{
"cve": "CVE-2015-3340",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3340"
}
],
"notes": [
{
"category": "general",
"text": "Xen 4.2.x through 4.5.x does not initialize certain fields, which allows certain remote service domains to obtain sensitive information from memory via a (1) XEN_DOMCTL_gettscinfo or (2) XEN_SYSCTL_getdomaininfolist request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3340",
"url": "https://www.suse.com/security/cve/CVE-2015-3340"
},
{
"category": "external",
"summary": "SUSE Bug 927967 for CVE-2015-3340",
"url": "https://bugzilla.suse.com/927967"
},
{
"category": "external",
"summary": "SUSE Bug 929339 for CVE-2015-3340",
"url": "https://bugzilla.suse.com/929339"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "low"
}
],
"title": "CVE-2015-3340"
},
{
"cve": "CVE-2015-3456",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3456"
}
],
"notes": [
{
"category": "general",
"text": "The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arbitrary code via the (1) FD_CMD_READ_ID, (2) FD_CMD_DRIVE_SPECIFICATION_COMMAND, or other unspecified commands, aka VENOM.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3456",
"url": "https://www.suse.com/security/cve/CVE-2015-3456"
},
{
"category": "external",
"summary": "SUSE Bug 929339 for CVE-2015-3456",
"url": "https://bugzilla.suse.com/929339"
},
{
"category": "external",
"summary": "SUSE Bug 932770 for CVE-2015-3456",
"url": "https://bugzilla.suse.com/932770"
},
{
"category": "external",
"summary": "SUSE Bug 935900 for CVE-2015-3456",
"url": "https://bugzilla.suse.com/935900"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-html-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-doc-pdf-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-default-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-pae-4.0.3_21548_18_2.6.32.59_0.19-0.21.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-kmp-trace-4.0.3_21548_12_2.6.32.54_0.11.TDC-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-libs-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-4.0.3_21548_12-0.3.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:xen-tools-domU-4.0.3_21548_12-0.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:59:15Z",
"details": "moderate"
}
],
"title": "CVE-2015-3456"
}
]
}
ghsa-h82g-hrcm-j7gq
Vulnerability from github
Published
2022-05-14 02:13
Modified
2022-05-14 02:13
VLAI Severity ?
Details
Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.
{
"affected": [],
"aliases": [
"CVE-2014-4021"
],
"database_specific": {
"cwe_ids": [
"CWE-119"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2014-06-18T19:55:00Z",
"severity": "LOW"
},
"details": "Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.",
"id": "GHSA-h82g-hrcm-j7gq",
"modified": "2022-05-14T02:13:57Z",
"published": "2022-05-14T02:13:57Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-4021"
},
{
"type": "WEB",
"url": "http://linux.oracle.com/errata/ELSA-2014-0926-1.html"
},
{
"type": "WEB",
"url": "http://linux.oracle.com/errata/ELSA-2014-0926.html"
},
{
"type": "WEB",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html"
},
{
"type": "WEB",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59208"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60027"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60130"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60471"
},
{
"type": "WEB",
"url": "http://security.gentoo.org/glsa/glsa-201407-03.xml"
},
{
"type": "WEB",
"url": "http://support.citrix.com/article/CTX140984"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2014/dsa-3006"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/68070"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1030442"
},
{
"type": "WEB",
"url": "http://xenbits.xen.org/xsa/advisory-100.html"
}
],
"schema_version": "1.4.0",
"severity": []
}
fkie_cve-2014-4021
Vulnerability from fkie_nvd
Published
2014-06-18 19:55
Modified
2025-04-12 10:46
Severity ?
Summary
Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | http://linux.oracle.com/errata/ELSA-2014-0926-1.html | ||
| cve@mitre.org | http://linux.oracle.com/errata/ELSA-2014-0926.html | ||
| cve@mitre.org | http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html | ||
| cve@mitre.org | http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html | ||
| cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html | ||
| cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html | ||
| cve@mitre.org | http://secunia.com/advisories/59208 | ||
| cve@mitre.org | http://secunia.com/advisories/60027 | ||
| cve@mitre.org | http://secunia.com/advisories/60130 | ||
| cve@mitre.org | http://secunia.com/advisories/60471 | ||
| cve@mitre.org | http://security.gentoo.org/glsa/glsa-201407-03.xml | ||
| cve@mitre.org | http://support.citrix.com/article/CTX140984 | ||
| cve@mitre.org | http://www.debian.org/security/2014/dsa-3006 | ||
| cve@mitre.org | http://www.securityfocus.com/bid/68070 | ||
| cve@mitre.org | http://www.securitytracker.com/id/1030442 | ||
| cve@mitre.org | http://xenbits.xen.org/xsa/advisory-100.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://linux.oracle.com/errata/ELSA-2014-0926-1.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://linux.oracle.com/errata/ELSA-2014-0926.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/59208 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60027 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60130 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/60471 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://security.gentoo.org/glsa/glsa-201407-03.xml | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://support.citrix.com/article/CTX140984 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.debian.org/security/2014/dsa-3006 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/68070 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securitytracker.com/id/1030442 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://xenbits.xen.org/xsa/advisory-100.html | Patch, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| xen | xen | 3.2.0 | |
| xen | xen | 3.2.1 | |
| xen | xen | 3.2.2 | |
| xen | xen | 3.2.3 | |
| xen | xen | 4.0.0 | |
| xen | xen | 4.0.1 | |
| xen | xen | 4.0.2 | |
| xen | xen | 4.0.3 | |
| xen | xen | 4.0.4 | |
| xen | xen | 4.1.0 | |
| xen | xen | 4.1.1 | |
| xen | xen | 4.1.2 | |
| xen | xen | 4.1.3 | |
| xen | xen | 4.1.4 | |
| xen | xen | 4.1.5 | |
| xen | xen | 4.1.6.1 | |
| xen | xen | 4.2.0 | |
| xen | xen | 4.2.1 | |
| xen | xen | 4.2.2 | |
| xen | xen | 4.2.3 | |
| xen | xen | 4.3.0 | |
| xen | xen | 4.3.1 | |
| xen | xen | 4.4.0 | |
| xen | xen | 4.4.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:xen:xen:3.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "B81B6EEB-D01E-432D-AEBF-707409741C0A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:3.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2A4B60DE-A8C0-459E-A99C-6EF0D3264B75",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:3.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A83F4F7E-53CF-4066-857B-2154D25979D8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:3.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "048E790E-B0A1-4504-9299-0B6D9CB0C509",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "550223A9-B9F1-440A-8C25-9F0F76AF7301",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "FC734D58-96E5-4DD2-8781-F8E0ADB96462",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "62CEC1BF-1922-410D-BCBA-C58199F574C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "923F2C2B-4A65-4823-B511-D0FEB7C7FAB2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "C1A24DED-B2EC-4D9C-9FA4-DD37EF3E3BFC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "0D532B60-C8DD-4A2F-9D05-E574D23EB754",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "5D83CA8B-8E49-45FA-8FAB-C15052474542",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "27537DF5-7E0F-463F-BA87-46E329EE07AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.1.3:*:*:*:*:*:*:*",
"matchCriteriaId": "3EA4F978-9145-4FE6-B4F9-15207E52C40A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.1.4:*:*:*:*:*:*:*",
"matchCriteriaId": "22A995FD-9B7F-4DF0-BECF-4B086E470F1E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.1.5:*:*:*:*:*:*:*",
"matchCriteriaId": "219597E2-E2D7-4647-8A7C-688B96300158",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.1.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "65E55950-EACA-4209-B2A1-E09026FC6006",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "8F0AF8EF-6FF6-4E22-B16E-82C9F90C6B00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "47640819-FC43-49ED-8A77-728C3D7255B3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "2448537F-87AD-45C1-9FB0-7A49CA31BD76",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "E36B2265-70E1-413B-A7CF-79D39E9ADCFB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "BF948E6A-07BE-4C7D-8A98-002E89D35F4D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C0E23B94-1726-4F63-84BB-8D83FAB156D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "1044792C-D544-457C-9391-4F3B5BAB978D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:xen:xen:4.4.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "CF23B21B-594A-42E2-AF90-D5C4246B39A4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors."
},
{
"lang": "es",
"value": "Xen 3.2.x hasta 4.4.x no limpia debidamente las p\u00e1ginas de memoria recuperadas de invitados, lo que permite a usuarios locales del sistema operativo invitado obtener informaci\u00f3n sensible a trav\u00e9s de vectores no especificados."
}
],
"id": "CVE-2014-4021",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 5.1,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2014-06-18T19:55:04.920",
"references": [
{
"source": "cve@mitre.org",
"url": "http://linux.oracle.com/errata/ELSA-2014-0926-1.html"
},
{
"source": "cve@mitre.org",
"url": "http://linux.oracle.com/errata/ELSA-2014-0926.html"
},
{
"source": "cve@mitre.org",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html"
},
{
"source": "cve@mitre.org",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html"
},
{
"source": "cve@mitre.org",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html"
},
{
"source": "cve@mitre.org",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/59208"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/60027"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/60130"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/60471"
},
{
"source": "cve@mitre.org",
"url": "http://security.gentoo.org/glsa/glsa-201407-03.xml"
},
{
"source": "cve@mitre.org",
"url": "http://support.citrix.com/article/CTX140984"
},
{
"source": "cve@mitre.org",
"url": "http://www.debian.org/security/2014/dsa-3006"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/68070"
},
{
"source": "cve@mitre.org",
"url": "http://www.securitytracker.com/id/1030442"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://xenbits.xen.org/xsa/advisory-100.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://linux.oracle.com/errata/ELSA-2014-0926-1.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://linux.oracle.com/errata/ELSA-2014-0926.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/59208"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60027"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60130"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/60471"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://security.gentoo.org/glsa/glsa-201407-03.xml"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://support.citrix.com/article/CTX140984"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2014/dsa-3006"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/68070"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id/1030442"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://xenbits.xen.org/xsa/advisory-100.html"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
gsd-2014-4021
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2014-4021",
"description": "Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.",
"id": "GSD-2014-4021",
"references": [
"https://www.suse.com/security/cve/CVE-2014-4021.html",
"https://www.debian.org/security/2014/dsa-3006",
"https://access.redhat.com/errata/RHSA-2014:0926",
"https://linux.oracle.com/cve/CVE-2014-4021.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2014-4021"
],
"details": "Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.",
"id": "GSD-2014-4021",
"modified": "2023-12-13T01:22:45.967828Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2014-4021",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "FEDORA-2014-7722",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html"
},
{
"name": "openSUSE-SU-2014:1281",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html"
},
{
"name": "60471",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60471"
},
{
"name": "60027",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60027"
},
{
"name": "http://linux.oracle.com/errata/ELSA-2014-0926.html",
"refsource": "CONFIRM",
"url": "http://linux.oracle.com/errata/ELSA-2014-0926.html"
},
{
"name": "openSUSE-SU-2014:1279",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html"
},
{
"name": "http://linux.oracle.com/errata/ELSA-2014-0926-1.html",
"refsource": "CONFIRM",
"url": "http://linux.oracle.com/errata/ELSA-2014-0926-1.html"
},
{
"name": "http://support.citrix.com/article/CTX140984",
"refsource": "CONFIRM",
"url": "http://support.citrix.com/article/CTX140984"
},
{
"name": "1030442",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1030442"
},
{
"name": "GLSA-201407-03",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201407-03.xml"
},
{
"name": "http://xenbits.xen.org/xsa/advisory-100.html",
"refsource": "CONFIRM",
"url": "http://xenbits.xen.org/xsa/advisory-100.html"
},
{
"name": "60130",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60130"
},
{
"name": "DSA-3006",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2014/dsa-3006"
},
{
"name": "68070",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/68070"
},
{
"name": "59208",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59208"
},
{
"name": "FEDORA-2014-7734",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.1.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.1.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.3.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.3.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.0.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.0.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.1.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.1.6.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.4.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.4.0:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.0.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.2.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.2.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:3.2.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:3.2.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.1.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.1.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:4.2.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:3.2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:xen:xen:3.2.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2014-4021"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "68070",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/68070"
},
{
"name": "http://xenbits.xen.org/xsa/advisory-100.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://xenbits.xen.org/xsa/advisory-100.html"
},
{
"name": "59208",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/59208"
},
{
"name": "1030442",
"refsource": "SECTRACK",
"tags": [],
"url": "http://www.securitytracker.com/id/1030442"
},
{
"name": "http://support.citrix.com/article/CTX140984",
"refsource": "CONFIRM",
"tags": [],
"url": "http://support.citrix.com/article/CTX140984"
},
{
"name": "60027",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60027"
},
{
"name": "openSUSE-SU-2014:1281",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html"
},
{
"name": "openSUSE-SU-2014:1279",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.html"
},
{
"name": "DSA-3006",
"refsource": "DEBIAN",
"tags": [],
"url": "http://www.debian.org/security/2014/dsa-3006"
},
{
"name": "GLSA-201407-03",
"refsource": "GENTOO",
"tags": [],
"url": "http://security.gentoo.org/glsa/glsa-201407-03.xml"
},
{
"name": "60471",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60471"
},
{
"name": "60130",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/60130"
},
{
"name": "FEDORA-2014-7722",
"refsource": "FEDORA",
"tags": [],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135071.html"
},
{
"name": "FEDORA-2014-7734",
"refsource": "FEDORA",
"tags": [],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135068.html"
},
{
"name": "http://linux.oracle.com/errata/ELSA-2014-0926-1.html",
"refsource": "CONFIRM",
"tags": [],
"url": "http://linux.oracle.com/errata/ELSA-2014-0926-1.html"
},
{
"name": "http://linux.oracle.com/errata/ELSA-2014-0926.html",
"refsource": "CONFIRM",
"tags": [],
"url": "http://linux.oracle.com/errata/ELSA-2014-0926.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 5.1,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2018-10-30T16:26Z",
"publishedDate": "2014-06-18T19:55Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…