openSUSE Security Update: Xen: Collective bugfix update (2010/04) ______________________________________________________________________________ Announcement ID: openSUSE-SU-2010:0293-1 Rating: moderate References: #481592 #529195 #537370 #541945 #542525 #545470 #547590 #548438 #548443 #548852 #550397 #553631 #553633 #555152 #561912 #564750 #572691 #573748 #576832 Cross-References: CVE-2009-3525 Affected Products: openSUSE 11.1 ______________________________________________________________________________ An update that solves one vulnerability and has 18 fixes is now available. It includes one version update. Description: Collective Xen 2010/04 Update, containing fixes for the following issues: bnc#576832 - pygrub, reiserfs: Fix on-disk structure definition bnc#537370 - Xen on SLES 11 does not boot - endless loop in ATA detection bnc#561912 - xend leaks memory bnc#564750 - Keyboard Caps Lock key works abnormal under SLES11 xen guest OS. bnc#548443 - keymap setting not preserved bnc#555152 - "NAME" column in xentop (SLES11) output limited to 10 characters unlike SLES10 bnc#553631 - L3: diskpart will not run on windows 2008 bnc#548852 - DL585G2 - plug-in PCI cards fail in IO-APIC mode bnc#529195 - xend: disallow ! as a sxp separator bnc#550397 - xend: bootable flag of VBD not always of type int bnc#545470 - Xen vifname parameter is ignored when using type=ioemu in guest configuration file bnc#541945 - xm create -x command does not work in SLES 10 SP2 or SLES 11 bnc#542525 - VUL-1: xen pygrub vulnerability bnc#481592 and fate#306125 - Virtual machines are not able to boot from CD to allow upgrade to OES2SP1 (sle10 bug) bnc#553633 - Update breaks menu access keys in virt-viewer and still misses some key sequences. (sle10 bug) fate#306720: xen: virt-manager cdrom handling. bnc#547590 - L3: virt-manager is unable of displaying VNC console on remote hosts bnc#572691 - libvird segfaults when trying to create a kvm guest bnc#573748 - L3: Virsh gives error Device 51712 not connected after updating libvirt modules bnc#548438 - libcmpiutil / libvirt-cim does not properly handle CIM_ prefixed bnc#513921 - Xen doesn't work get an eror when starting the install processes or starting a pervious installed DomU bnc#526855 - Cannot set MAC address for PV guest in vm-install Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.1: zypper in -t patch xen-201004-2445 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.1 (i586 ppc src x86_64): libcmpiutil-0.5-15.18.1 libvirt-0.4.6-11.16.26 libvirt-cim-0.5.2-4.22.92 - openSUSE 11.1 (i586 ppc x86_64): libcmpiutil-devel-0.5-15.18.1 libvirt-devel-0.4.6-11.16.26 libvirt-doc-0.4.6-11.16.26 libvirt-python-0.4.6-11.16.26 - openSUSE 11.1 (i586 src x86_64) [New Version: 0.3.27]: virt-manager-0.5.3-64.26.26 virt-viewer-0.0.3-3.30.27 vm-install-0.3.27-0.1.13 xen-3.3.1_18546_24-0.4.13 - openSUSE 11.1 (i586 x86_64): xen-devel-3.3.1_18546_24-0.4.13 xen-doc-html-3.3.1_18546_24-0.4.13 xen-doc-pdf-3.3.1_18546_24-0.4.13 xen-kmp-debug-3.3.1_18546_24_2.6.27.45_0.2-0.4.13 xen-kmp-default-3.3.1_18546_24_2.6.27.45_0.2-0.4.13 xen-kmp-trace-3.3.1_18546_24_2.6.27.45_0.2-0.4.13 xen-libs-3.3.1_18546_24-0.4.13 xen-tools-3.3.1_18546_24-0.4.13 xen-tools-domU-3.3.1_18546_24-0.4.13 - openSUSE 11.1 (x86_64): xen-libs-32bit-3.3.1_18546_24-0.4.13 - openSUSE 11.1 (i586): xen-kmp-pae-3.3.1_18546_24_2.6.27.45_0.2-0.4.13 References: http://support.novell.com/security/cve/CVE-2009-3525.html https://bugzilla.novell.com/481592 https://bugzilla.novell.com/529195 https://bugzilla.novell.com/537370 https://bugzilla.novell.com/541945 https://bugzilla.novell.com/542525 https://bugzilla.novell.com/545470 https://bugzilla.novell.com/547590 https://bugzilla.novell.com/548438 https://bugzilla.novell.com/548443 https://bugzilla.novell.com/548852 https://bugzilla.novell.com/550397 https://bugzilla.novell.com/553631 https://bugzilla.novell.com/553633 https://bugzilla.novell.com/555152 https://bugzilla.novell.com/561912 https://bugzilla.novell.com/564750 https://bugzilla.novell.com/572691 https://bugzilla.novell.com/573748 https://bugzilla.novell.com/576832