openSUSE Recommended Update: Recommended update for xen ______________________________________________________________________________ Announcement ID: openSUSE-RU-2019:2407-1 Rating: important References: #1027519 #1126140 #1126141 #1126192 #1126195 #1126196 #1126197 #1126198 #1126201 #1127400 #1129642 #1131811 #1133818 #1137717 #1138294 #1138563 #1145240 #1145774 Affected Products: openSUSE Leap 15.0 ______________________________________________________________________________ An update that solves 14 vulnerabilities and has four fixes is now available. Description: This update for xen to version 4.10.4 fixes the following issues: - Fixed an issue where libxenlight could not restore domain vsa6535522 on live migration (bsc#1133818). - Fixed an HPS bug which did not allow to install Windows Server 2016 with 2 CPUs setting or above (bsc#1137717). - Fixed an issue where libxenlight could not create new domain (bsc#1131811). - Fixed an issue where Xen could not pre-allocate 1 shadow page (bsc#1145240). - Fixed an issue where attached pci devices were lost after reboot (bsc#1129642). - Fixed a segmentation fault in Libvrtd during live migration to a VM (bsc#1145774). - Xenpvnetboot is now ported correctly to Python 3 (bsc#1138563). This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Recommended Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.0: zypper in -t patch openSUSE-2019-2407=1 Package List: - openSUSE Leap 15.0 (i586 x86_64): xen-debugsource-4.10.4_04-lp150.2.22.1 xen-devel-4.10.4_04-lp150.2.22.1 xen-libs-4.10.4_04-lp150.2.22.1 xen-libs-debuginfo-4.10.4_04-lp150.2.22.1 xen-tools-domU-4.10.4_04-lp150.2.22.1 xen-tools-domU-debuginfo-4.10.4_04-lp150.2.22.1 - openSUSE Leap 15.0 (x86_64): xen-4.10.4_04-lp150.2.22.1 xen-doc-html-4.10.4_04-lp150.2.22.1 xen-libs-32bit-4.10.4_04-lp150.2.22.1 xen-libs-32bit-debuginfo-4.10.4_04-lp150.2.22.1 xen-tools-4.10.4_04-lp150.2.22.1 xen-tools-debuginfo-4.10.4_04-lp150.2.22.1 References: https://www.suse.com/security/cve/CVE-2018-12126.html https://www.suse.com/security/cve/CVE-2018-12127.html https://www.suse.com/security/cve/CVE-2018-12130.html https://www.suse.com/security/cve/CVE-2019-11091.html https://www.suse.com/security/cve/CVE-2019-17340.html https://www.suse.com/security/cve/CVE-2019-17341.html https://www.suse.com/security/cve/CVE-2019-17342.html https://www.suse.com/security/cve/CVE-2019-17343.html https://www.suse.com/security/cve/CVE-2019-17344.html https://www.suse.com/security/cve/CVE-2019-17345.html https://www.suse.com/security/cve/CVE-2019-17346.html https://www.suse.com/security/cve/CVE-2019-17347.html https://www.suse.com/security/cve/CVE-2019-17348.html https://www.suse.com/security/cve/CVE-2019-17349.html https://bugzilla.suse.com/1027519 https://bugzilla.suse.com/1126140 https://bugzilla.suse.com/1126141 https://bugzilla.suse.com/1126192 https://bugzilla.suse.com/1126195 https://bugzilla.suse.com/1126196 https://bugzilla.suse.com/1126197 https://bugzilla.suse.com/1126198 https://bugzilla.suse.com/1126201 https://bugzilla.suse.com/1127400 https://bugzilla.suse.com/1129642 https://bugzilla.suse.com/1131811 https://bugzilla.suse.com/1133818 https://bugzilla.suse.com/1137717 https://bugzilla.suse.com/1138294 https://bugzilla.suse.com/1138563 https://bugzilla.suse.com/1145240 https://bugzilla.suse.com/1145774