openSUSE Security Update: xen: Collective May/2011 update ______________________________________________________________________________ Announcement ID: openSUSE-SU-2011:0578-1 Rating: moderate References: #631680 #675363 #678152 #679344 #681044 #681302 #688473 #688757 #691238 #691738 Cross-References: CVE-2011-1146 CVE-2011-1166 CVE-2011-1486 CVE-2011-1583 Affected Products: openSUSE 11.4 ______________________________________________________________________________ An update that solves four vulnerabilities and has 6 fixes is now available. It includes two new package versions. Description: Collective May/2011 update for Xen Xen: - 675363 - Random lockups with kernel-xen. Possibly graphics related. - 679344 - Xen: multi-vCPU pv guest may crash host - 681044 - update xenpaging.autostart.patch - 681302 - xm create -x <guest> returns "ImportError: No module named ext" - 688473 - potential buffer overflow in tools - 691738 - Xen does not find device create with npiv block vm-install: - 688757 - SLED10SP4 fully virtualized in SLES10SP4 XEN - kernel panic - 678152 - Xen: virt-manager: harmless block device admin actions on FV guests mess up network (VIF) device type ==> network lost. - 631680 - OpenSUSE 11.3 KVM install of windows xp fails on first reboot during installation. Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.4: zypper in -t patch xen-201105-4534 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.4 (i586 x86_64) [New Version: 0.4.30]: vm-install-0.4.30-0.3.1 xen-4.0.2_02-4.9.2 xen-devel-4.0.2_02-4.9.2 xen-doc-html-4.0.2_02-4.9.2 xen-doc-pdf-4.0.2_02-4.9.2 xen-kmp-default-4.0.2_02_k2.6.37.6_0.5-4.9.2 xen-kmp-desktop-4.0.2_02_k2.6.37.6_0.5-4.9.2 xen-libs-4.0.2_02-4.9.2 xen-tools-4.0.2_02-4.9.2 xen-tools-domU-4.0.2_02-4.9.2 - openSUSE 11.4 (i586): xen-kmp-pae-4.0.2_02_k2.6.37.6_0.5-4.9.2 References: http://support.novell.com/security/cve/CVE-2011-1146.html http://support.novell.com/security/cve/CVE-2011-1166.html http://support.novell.com/security/cve/CVE-2011-1486.html http://support.novell.com/security/cve/CVE-2011-1583.html https://bugzilla.novell.com/631680 https://bugzilla.novell.com/675363 https://bugzilla.novell.com/678152 https://bugzilla.novell.com/679344 https://bugzilla.novell.com/681044 https://bugzilla.novell.com/681302 https://bugzilla.novell.com/688473 https://bugzilla.novell.com/688757 https://bugzilla.novell.com/691238 https://bugzilla.novell.com/691738