CVE-2012-3433

Common Vulnerabilities and Exposures

Upstream information

CVE-2012-3433 at MITRE

Description

Xen 4.0 and 4.1 allows local HVM guest OS kernels to cause a denial of service (domain 0 VCPU hang and kernel panic) by modifying the physical address space in a way that triggers excessive shared page search time during the p2m teardown.

NVD CVSS v2 Base Score: 4.9 (AV:L/AC:L/Au:N/C:N/I:N/A:C)

Novell/SUSE information

Novell Bugzilla entry: 773393, 773401

SUSE Security Advisories:

SUSE-SU-2012:1044-1, published Mon, 27 Aug 2012 17:08:38 +0200 (CEST)
openSUSE-SU-2012:1172-1, published Fri, 14 Sep 2012 14:09:32 +0200 (CEST)
openSUSE-SU-2012:1174-1, published Fri, 14 Sep 2012 14:12:18 +0200 (CEST)
openSUSE-SU-2012:1176-1, published Fri, 14 Sep 2012 14:14:04 +0200 (CEST)

List of released packages

Product(s)	Fixed package version(s)	References
SLE 11 SP2 DEBUGINFO	`libvirt-debuginfo >= 0.9.6-0.21.3` `libvirt-debugsource >= 0.9.6-0.21.3` `xen-debuginfo >= 4.1.2_20-0.5.2` `xen-debugsource >= 4.1.2_20-0.5.2`	sles11-sp2.x86-64 sled11-sp2.x86-64 sle11-sp2-sdk.x86-64 SAT Patch Nr: 6640
SUSE Linux Enterprise Software Development Kit 11 SP2	`libvirt-devel >= 0.9.6-0.21.3` `libvirt-devel-32bit >= 0.9.6-0.21.3` `xen-devel >= 4.1.2_20-0.5.2`	sles11-sp2.x86-64 sled11-sp2.x86-64 sle11-sp2-sdk.x86-64 SAT Patch Nr: 6640
SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Server 11 SP2	`libvirt >= 0.9.6-0.21.3` `libvirt-client >= 0.9.6-0.21.3` `libvirt-client-32bit >= 0.9.6-0.21.3` `libvirt-doc >= 0.9.6-0.21.3` `libvirt-python >= 0.9.6-0.21.3` `virt-manager >= 0.9.0-3.19.1` `vm-install >= 0.5.10-0.5.1` `xen >= 4.1.2_20-0.5.2` `xen-doc-html >= 4.1.2_20-0.5.2` `xen-doc-pdf >= 4.1.2_20-0.5.2` `xen-kmp-default >= 4.1.2_20_3.0.38_0.5-0.5.2` `xen-kmp-trace >= 4.1.2_20_3.0.38_0.5-0.5.2` `xen-libs >= 4.1.2_20-0.5.2` `xen-libs-32bit >= 4.1.2_20-0.5.2` `xen-tools >= 4.1.2_20-0.5.2` `xen-tools-domU >= 4.1.2_20-0.5.2`	sles11-sp2.x86-64 sled11-sp2.x86-64 sle11-sp2-sdk.x86-64 SAT Patch Nr: 6640
SLE 11 SP1 DEBUGINFO	`xen-debuginfo >= 4.0.3_21548_08-0.7.1` `xen-debugsource >= 4.0.3_21548_08-0.7.1`	sle11-sp1-sdk.x86-64 sled11-sp1.x86-64 sle11-sp1-sdk.x86 sles11-sp1-vmware.x86 sles11-sp1.x86-64 sled11-sp1.x86 sles11-sp1.x86 sles11-sp1-vmware.x86-64 SAT Patch Nr: 6653
SUSE Linux Enterprise Software Development Kit 11 SP1	`xen-devel >= 4.0.3_21548_08-0.7.1`	sle11-sp1-sdk.x86-64 sled11-sp1.x86-64 sle11-sp1-sdk.x86 sles11-sp1-vmware.x86 sles11-sp1.x86-64 sled11-sp1.x86 sles11-sp1.x86 sles11-sp1-vmware.x86-64 SAT Patch Nr: 6653
SUSE Linux Enterprise Desktop 11 SP1	`vm-install >= 0.4.34-0.3.1` `xen >= 4.0.3_21548_08-0.7.1` `xen-kmp-default >= 4.0.3_21548_08_2.6.32.59_0.7-0.7.1` `xen-kmp-pae >= 4.0.3_21548_08_2.6.32.59_0.7-0.7.1` `xen-libs >= 4.0.3_21548_08-0.7.1` `xen-tools >= 4.0.3_21548_08-0.7.1` `xen-tools-domU >= 4.0.3_21548_08-0.7.1`	sle11-sp1-sdk.x86-64 sled11-sp1.x86-64 sle11-sp1-sdk.x86 sles11-sp1-vmware.x86 sles11-sp1.x86-64 sled11-sp1.x86 sles11-sp1.x86 sles11-sp1-vmware.x86-64 SAT Patch Nr: 6653
SUSE Linux Enterprise Desktop 11 SP1	`vm-install >= 0.4.34-0.3.1` `xen >= 4.0.3_21548_08-0.7.1` `xen-kmp-default >= 4.0.3_21548_08_2.6.32.59_0.7-0.7.1` `xen-libs >= 4.0.3_21548_08-0.7.1` `xen-tools >= 4.0.3_21548_08-0.7.1` `xen-tools-domU >= 4.0.3_21548_08-0.7.1`	sle11-sp1-sdk.x86-64 sled11-sp1.x86-64 sle11-sp1-sdk.x86 sles11-sp1-vmware.x86 sles11-sp1.x86-64 sled11-sp1.x86 sles11-sp1.x86 sles11-sp1-vmware.x86-64 SAT Patch Nr: 6653
SUSE Linux Enterprise Server 11 SP1	`vm-install >= 0.4.34-0.3.1` `xen >= 4.0.3_21548_08-0.7.1` `xen-doc-html >= 4.0.3_21548_08-0.7.1` `xen-doc-pdf >= 4.0.3_21548_08-0.7.1` `xen-kmp-default >= 4.0.3_21548_08_2.6.32.59_0.7-0.7.1` `xen-kmp-trace >= 4.0.3_21548_08_2.6.32.59_0.7-0.7.1` `xen-libs >= 4.0.3_21548_08-0.7.1` `xen-tools >= 4.0.3_21548_08-0.7.1` `xen-tools-domU >= 4.0.3_21548_08-0.7.1`	sle11-sp1-sdk.x86-64 sled11-sp1.x86-64 sle11-sp1-sdk.x86 sles11-sp1-vmware.x86 sles11-sp1.x86-64 sled11-sp1.x86 sles11-sp1.x86 sles11-sp1-vmware.x86-64 SAT Patch Nr: 6653
SUSE Linux Enterprise Server 11 SP1 for VMware	`xen-kmp-trace >= 4.0.3_21548_08_2.6.32.59_0.7-0.7.1`	sle11-sp1-sdk.x86-64 sled11-sp1.x86-64 sle11-sp1-sdk.x86 sles11-sp1-vmware.x86 sles11-sp1.x86-64 sled11-sp1.x86 sles11-sp1.x86 sles11-sp1-vmware.x86-64 SAT Patch Nr: 6653
SUSE Linux Enterprise Server 11 SP1	`vm-install >= 0.4.34-0.3.1` `xen >= 4.0.3_21548_08-0.7.1` `xen-doc-html >= 4.0.3_21548_08-0.7.1` `xen-doc-pdf >= 4.0.3_21548_08-0.7.1` `xen-kmp-default >= 4.0.3_21548_08_2.6.32.59_0.7-0.7.1` `xen-kmp-pae >= 4.0.3_21548_08_2.6.32.59_0.7-0.7.1` `xen-kmp-trace >= 4.0.3_21548_08_2.6.32.59_0.7-0.7.1` `xen-libs >= 4.0.3_21548_08-0.7.1` `xen-tools >= 4.0.3_21548_08-0.7.1` `xen-tools-domU >= 4.0.3_21548_08-0.7.1`	sle11-sp1-sdk.x86-64 sled11-sp1.x86-64 sle11-sp1-sdk.x86 sles11-sp1-vmware.x86 sles11-sp1.x86-64 sled11-sp1.x86 sles11-sp1.x86 sles11-sp1-vmware.x86-64 SAT Patch Nr: 6653

Products

Products By Category

Collaboration

Endpoint Management

File & Networking Services

Services & Support

Help Yourself

Let Us Help

Download

IT Consulting

Technical Training

Customer Center

Contribute

Partners

Partner With Novell

PartnerNet

Find a Partner

Developers

Communities

About Novell

How to Buy