csaf_suse - suse-su-2018:2409-1

suse-su-2018:2409-1

Vulnerability from csaf_suse

Published

2018-08-17 11:42

Modified

2018-08-17 11:42

Summary

Security update for xen

Notes

Title of the patch

Security update for xen

Description of the patch

This update for xen fixes the following security issues: - CVE-2018-3646: Systems with microprocessors utilizing speculative execution and address translations may have allowed unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis (bsc#1091107, bsc#1027519). - Incorrect MSR_DEBUGCTL handling let guests enable BTS allowing a malicious or buggy guest administrator can lock up the entire host (bsc#1103276)

Patchnames

SUSE-SLE-Module-Basesystem-15-2018-1663,SUSE-SLE-Module-Server-Applications-15-2018-1663

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for xen",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for xen fixes the following security issues:\n\n- CVE-2018-3646: Systems with microprocessors utilizing speculative execution\n  and address translations may have allowed unauthorized disclosure of\n  information residing in the L1 data cache to an attacker with local user access\n  with guest OS privilege via a terminal page fault and a side-channel analysis\n  (bsc#1091107, bsc#1027519).\n- Incorrect MSR_DEBUGCTL handling let guests enable BTS allowing a malicious or\n  buggy guest administrator can lock up the entire host (bsc#1103276)\n  ",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-Module-Basesystem-15-2018-1663,SUSE-SLE-Module-Server-Applications-15-2018-1663",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_2409-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:2409-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20182409-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:2409-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-August/004464.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1027519",
        "url": "https://bugzilla.suse.com/1027519"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1091107",
        "url": "https://bugzilla.suse.com/1091107"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1103276",
        "url": "https://bugzilla.suse.com/1103276"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-3646 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-3646/"
      }
    ],
    "title": "Security update for xen",
    "tracking": {
      "current_release_date": "2018-08-17T11:42:30Z",
      "generator": {
        "date": "2018-08-17T11:42:30Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:2409-1",
      "initial_release_date": "2018-08-17T11:42:30Z",
      "revision_history": [
        {
          "date": "2018-08-17T11:42:30Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "xen-libs-4.10.1_08-3.6.1.x86_64",
                "product": {
                  "name": "xen-libs-4.10.1_08-3.6.1.x86_64",
                  "product_id": "xen-libs-4.10.1_08-3.6.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "xen-tools-domU-4.10.1_08-3.6.1.x86_64",
                "product": {
                  "name": "xen-tools-domU-4.10.1_08-3.6.1.x86_64",
                  "product_id": "xen-tools-domU-4.10.1_08-3.6.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "xen-4.10.1_08-3.6.1.x86_64",
                "product": {
                  "name": "xen-4.10.1_08-3.6.1.x86_64",
                  "product_id": "xen-4.10.1_08-3.6.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "xen-devel-4.10.1_08-3.6.1.x86_64",
                "product": {
                  "name": "xen-devel-4.10.1_08-3.6.1.x86_64",
                  "product_id": "xen-devel-4.10.1_08-3.6.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "xen-tools-4.10.1_08-3.6.1.x86_64",
                "product": {
                  "name": "xen-tools-4.10.1_08-3.6.1.x86_64",
                  "product_id": "xen-tools-4.10.1_08-3.6.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Basesystem 15",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Basesystem 15",
                  "product_id": "SUSE Linux Enterprise Module for Basesystem 15",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-basesystem:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Server Applications 15",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Server Applications 15",
                  "product_id": "SUSE Linux Enterprise Module for Server Applications 15",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-server-applications:15"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "xen-libs-4.10.1_08-3.6.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15:xen-libs-4.10.1_08-3.6.1.x86_64"
        },
        "product_reference": "xen-libs-4.10.1_08-3.6.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "xen-tools-domU-4.10.1_08-3.6.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15:xen-tools-domU-4.10.1_08-3.6.1.x86_64"
        },
        "product_reference": "xen-tools-domU-4.10.1_08-3.6.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "xen-4.10.1_08-3.6.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15:xen-4.10.1_08-3.6.1.x86_64"
        },
        "product_reference": "xen-4.10.1_08-3.6.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "xen-devel-4.10.1_08-3.6.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15:xen-devel-4.10.1_08-3.6.1.x86_64"
        },
        "product_reference": "xen-devel-4.10.1_08-3.6.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "xen-tools-4.10.1_08-3.6.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15",
          "product_id": "SUSE Linux Enterprise Module for Server Applications 15:xen-tools-4.10.1_08-3.6.1.x86_64"
        },
        "product_reference": "xen-tools-4.10.1_08-3.6.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-3646",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-3646"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Basesystem 15:xen-libs-4.10.1_08-3.6.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15:xen-tools-domU-4.10.1_08-3.6.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15:xen-4.10.1_08-3.6.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15:xen-devel-4.10.1_08-3.6.1.x86_64",
          "SUSE Linux Enterprise Module for Server Applications 15:xen-tools-4.10.1_08-3.6.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-3646",
          "url": "https://www.suse.com/security/cve/CVE-2018-3646"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087078 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1087078"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087081 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1087081"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089343 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1089343"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091107 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1091107"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1099306 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1099306"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1104365 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1104365"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1104894 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1104894"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1106548 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1106548"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1113534 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1113534"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136865 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1136865"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2018-3646",
          "url": "https://bugzilla.suse.com/1201877"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Basesystem 15:xen-libs-4.10.1_08-3.6.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15:xen-tools-domU-4.10.1_08-3.6.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15:xen-4.10.1_08-3.6.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15:xen-devel-4.10.1_08-3.6.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15:xen-tools-4.10.1_08-3.6.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Module for Basesystem 15:xen-libs-4.10.1_08-3.6.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15:xen-tools-domU-4.10.1_08-3.6.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15:xen-4.10.1_08-3.6.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15:xen-devel-4.10.1_08-3.6.1.x86_64",
            "SUSE Linux Enterprise Module for Server Applications 15:xen-tools-4.10.1_08-3.6.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-08-17T11:42:30Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-3646"
    }
  ]
}

CVE-2018-3646 (GCVE-0-2018-3646)

Vulnerability from cvelistv5

Published

2018-08-14 19:00

Modified

2024-09-17 02:27

Severity ?

CWE

Information Disclosure

Summary

Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis.

References

►

URL

Tags

	https://www.kb.cert.org/vuls/id/982149	third-party-advisory, x_refsource_CERT-VN
	http://www.securitytracker.com/id/1041451	vdb-entry, x_refsource_SECTRACK
	https://security.gentoo.org/glsa/201810-06	vendor-advisory, x_refsource_GENTOO
	https://usn.ubuntu.com/3741-2/	vendor-advisory, x_refsource_UBUNTU
	https://access.redhat.com/errata/RHSA-2018:2393	vendor-advisory, x_refsource_REDHAT
	https://usn.ubuntu.com/3823-1/	vendor-advisory, x_refsource_UBUNTU
	https://access.redhat.com/errata/RHSA-2018:2389	vendor-advisory, x_refsource_REDHAT
	http://www.securitytracker.com/id/1042004	vdb-entry, x_refsource_SECTRACK
	https://access.redhat.com/errata/RHSA-2018:2390	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2018:2403	vendor-advisory, x_refsource_REDHAT
	http://www.securityfocus.com/bid/105080	vdb-entry, x_refsource_BID
	https://access.redhat.com/errata/RHSA-2018:2395	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2018:2384	vendor-advisory, x_refsource_REDHAT
	https://usn.ubuntu.com/3740-2/	vendor-advisory, x_refsource_UBUNTU
	https://security.FreeBSD.org/advisories/FreeBSD-SA-18:09.l1tf.asc	vendor-advisory, x_refsource_FREEBSD
	https://www.debian.org/security/2018/dsa-4274	vendor-advisory, x_refsource_DEBIAN
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRFKQWYV2H4BV75CUNGCGE5TNVQCLBGZ/	vendor-advisory, x_refsource_FEDORA
	https://access.redhat.com/errata/RHSA-2018:2388	vendor-advisory, x_refsource_REDHAT
	https://usn.ubuntu.com/3741-1/	vendor-advisory, x_refsource_UBUNTU
	https://access.redhat.com/errata/RHSA-2018:2603	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2018:2402	vendor-advisory, x_refsource_REDHAT
	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180814-cpusidechannel	vendor-advisory, x_refsource_CISCO
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V4UWGORQWCENCIF2BHWUEF2ODBV75QS2/	vendor-advisory, x_refsource_FEDORA
	https://usn.ubuntu.com/3742-2/	vendor-advisory, x_refsource_UBUNTU
	https://access.redhat.com/errata/RHSA-2018:2404	vendor-advisory, x_refsource_REDHAT
	https://usn.ubuntu.com/3740-1/	vendor-advisory, x_refsource_UBUNTU
	https://access.redhat.com/errata/RHSA-2018:2391	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2018:2396	vendor-advisory, x_refsource_REDHAT
	https://www.debian.org/security/2018/dsa-4279	vendor-advisory, x_refsource_DEBIAN
	https://access.redhat.com/errata/RHSA-2018:2392	vendor-advisory, x_refsource_REDHAT
	https://lists.debian.org/debian-lts-announce/2018/08/msg00029.html	mailing-list, x_refsource_MLIST
	https://usn.ubuntu.com/3742-1/	vendor-advisory, x_refsource_UBUNTU
	https://access.redhat.com/errata/RHSA-2018:2602	vendor-advisory, x_refsource_REDHAT
	https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html	mailing-list, x_refsource_MLIST
	https://access.redhat.com/errata/RHSA-2018:2394	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2018:2387	vendor-advisory, x_refsource_REDHAT
	https://usn.ubuntu.com/3756-1/	vendor-advisory, x_refsource_UBUNTU
	https://www.oracle.com/security-alerts/cpujul2020.html	x_refsource_MISC
	https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html	x_refsource_CONFIRM
	https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html	x_refsource_MISC
	https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0	x_refsource_CONFIRM
	http://xenbits.xen.org/xsa/advisory-273.html	x_refsource_CONFIRM
	https://foreshadowattack.eu/	x_refsource_MISC
	https://security.netapp.com/advisory/ntap-20180815-0001/	x_refsource_CONFIRM
	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018	x_refsource_CONFIRM
	http://support.lenovo.com/us/en/solutions/LEN-24163	x_refsource_CONFIRM
	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180815-01-cpu-en	x_refsource_CONFIRM
	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00161.html	x_refsource_CONFIRM
	https://www.synology.com/support/security/Synology_SA_18_45	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/ssa-254686.pdf	x_refsource_CONFIRM
	https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03874en_us	x_refsource_CONFIRM
	https://software.intel.com/security-software-guidance/software-guidance/l1-terminal-fault	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf	x_refsource_CONFIRM
	https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0010	x_refsource_CONFIRM
	http://www.vmware.com/security/advisories/VMSA-2018-0020.html	x_refsource_CONFIRM
	https://support.f5.com/csp/article/K31300402	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Intel Corporation	Multiple	Version: Multiple

Show details on NVD website