SUSE-RU-2019:2715-1: important: Recommended update for xen

Fri Oct 18 13:11:13 MDT 2019

   SUSE Recommended Update: Recommended update for xen
______________________________________________________________________________

Announcement ID:    SUSE-RU-2019:2715-1
Rating:             important
References:         #1027519 #1111331 #1120095 #1133296 #1135799 
                    #1137471 #1137717 #1138294 #1138563 #1143563 
                    #1145240 #1145774 
Affected Products:
                    SUSE Linux Enterprise Module for Server Applications 15-SP1
                    SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1
                    SUSE Linux Enterprise Module for Basesystem 15-SP1
______________________________________________________________________________

   An update that solves 6 vulnerabilities and has 6 fixes is
   now available.

Description:

   This update for xen to version 4.12.1 fixes the following issues:

   - Fixed an issue which made Xen crash on AMD ROME based machines
     (bsc#1135799).
   - Xenpvnetboot is now ported correctly to Python 3 (bsc#1138563).
   - Added code to change LIBXL_HOTPLUG_TIMEOUT at runtime (bsc#1120095). The
     included README has details about the impact of this change
   - Fixed an issue where the speculative mitigation facilities reported
     wrong status (bsc#1143563).
   - Fixed an issue where Xen could not connect socket to
     /var/run/libvirt/libvirt-sock (bsc#1137471).
   - Fixed an HPS bug which did not allow to install Windows Server 2016 with
     2 CPUs setting or above (bsc#1137717).
   - Fixed a segmentation fault in Libvrtd during live migration to a VM
     (bsc#1145774).
   - LTO is now disabled (bsc#1133296).
   - Fixed an issue where Xen could not pre-allocate 1 shadow page
     (bsc#1145240).

Patch Instructions:

   To install this SUSE Recommended Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Module for Server Applications 15-SP1:

      zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP1-2019-2715=1

   - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1:

      zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2715=1

   - SUSE Linux Enterprise Module for Basesystem 15-SP1:

      zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP1-2019-2715=1

Package List:

   - SUSE Linux Enterprise Module for Server Applications 15-SP1 (x86_64):

      xen-4.12.1_02-3.3.1
      xen-debugsource-4.12.1_02-3.3.1
      xen-devel-4.12.1_02-3.3.1
      xen-tools-4.12.1_02-3.3.1
      xen-tools-debuginfo-4.12.1_02-3.3.1

   - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (aarch64 x86_64):

      xen-debugsource-4.12.1_02-3.3.1
      xen-doc-html-4.12.1_02-3.3.1

   - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (aarch64):

      xen-4.12.1_02-3.3.1
      xen-devel-4.12.1_02-3.3.1
      xen-libs-4.12.1_02-3.3.1
      xen-libs-debuginfo-4.12.1_02-3.3.1
      xen-tools-4.12.1_02-3.3.1
      xen-tools-debuginfo-4.12.1_02-3.3.1
      xen-tools-domU-4.12.1_02-3.3.1
      xen-tools-domU-debuginfo-4.12.1_02-3.3.1

   - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (x86_64):

      xen-libs-32bit-4.12.1_02-3.3.1
      xen-libs-32bit-debuginfo-4.12.1_02-3.3.1

   - SUSE Linux Enterprise Module for Basesystem 15-SP1 (x86_64):

      xen-debugsource-4.12.1_02-3.3.1
      xen-libs-4.12.1_02-3.3.1
      xen-libs-debuginfo-4.12.1_02-3.3.1
      xen-tools-domU-4.12.1_02-3.3.1
      xen-tools-domU-debuginfo-4.12.1_02-3.3.1

References:

   https://www.suse.com/security/cve/CVE-2018-12126.html
   https://www.suse.com/security/cve/CVE-2018-12127.html
   https://www.suse.com/security/cve/CVE-2018-12130.html
   https://www.suse.com/security/cve/CVE-2019-11091.html
   https://www.suse.com/security/cve/CVE-2019-17349.html
   https://www.suse.com/security/cve/CVE-2019-17350.html
   https://bugzilla.suse.com/1027519
   https://bugzilla.suse.com/1111331
   https://bugzilla.suse.com/1120095
   https://bugzilla.suse.com/1133296
   https://bugzilla.suse.com/1135799
   https://bugzilla.suse.com/1137471
   https://bugzilla.suse.com/1137717
   https://bugzilla.suse.com/1138294
   https://bugzilla.suse.com/1138563
   https://bugzilla.suse.com/1143563
   https://bugzilla.suse.com/1145240
   https://bugzilla.suse.com/1145774