SUSE-SU-2012:0817-1: moderate: Security update for hyper-v
sle-updates at lists.suse.com
sle-updates at lists.suse.com
Tue Jul 3 16:09:06 MDT 2012
SUSE Security Update: Security update for hyper-v
______________________________________________________________________________
Announcement ID: SUSE-SU-2012:0817-1
Rating: moderate
References: #761200
Cross-References: CVE-2012-2669
Affected Products:
SUSE Linux Enterprise Server 11 SP2
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
The Hyper-V userland daemon was updated to match the
current kernel Hyper-V feature level.
It brings key-value-pair storage that can be queried by the
kernel via the netlink interface and can pass information
out to the Hyper-V hypervisor.
The netlink query code was adjusted to only allow the Linux
kernel to access it via netlink messages (CVE-2012-2669).
Security Issue reference:
* CVE-2012-2669
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2669
>
Patch Instructions:
To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Server 11 SP2:
zypper in -t patch slessp2-hyper-v-6431
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Linux Enterprise Server 11 SP2 (i586 x86_64):
hyper-v-3-0.5.1
References:
http://support.novell.com/security/cve/CVE-2012-2669.html
https://bugzilla.novell.com/761200
http://download.novell.com/patch/finder/?keywords=e70f5ee49a7d2feb951ac6fe0ea3a0c3
More information about the sle-updates
mailing list