SUSE-SU-2023:0848-2
- Source
- https://www.suse.com/support/update/announcement/2023/suse-su-20230848-2/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:0848-2.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2023:0848-2
- Related
- Published
- 2023-04-27T13:55:37Z
- Modified
- 2023-04-27T13:55:37Z
- Summary
- Security update for xen
- Details
-
This update for xen fixes the following issues:
- CVE-2022-42332: Fixed use-after-free in x86 shadow plus log-dirty mode (bsc#1209017).
- CVE-2022-42333,CVE-2022-42334: Fixed x86/HVM pinned cache attributes mis-handling (bsc#1209018).
- CVE-2022-42331: Fixed speculative vulnerability in 32bit SYSCALL path on x86 (bsc#1209019).
- References
-
- https://www.suse.com/support/update/announcement/2023/suse-su-20230848-2/
- https://bugzilla.suse.com/1209017
- https://bugzilla.suse.com/1209018
- https://bugzilla.suse.com/1209019
- https://bugzilla.suse.com/1209188
- https://www.suse.com/security/cve/CVE-2022-42331
- https://www.suse.com/security/cve/CVE-2022-42332
- https://www.suse.com/security/cve/CVE-2022-42333
- https://www.suse.com/security/cve/CVE-2022-42334