SUSE update for xen
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2024-28956 |
| CWE-ID | CWE-399 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
Server Applications Module Operating systems & Components / Operating system Basesystem Module Operating systems & Components / Operating system SUSE Linux Enterprise Real Time 15 Operating systems & Components / Operating system openSUSE Leap Operating systems & Components / Operating system SUSE Linux Enterprise Server for SAP Applications 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 Operating systems & Components / Operating system SUSE Linux Enterprise Desktop 15 Operating systems & Components / Operating system xen-libs-64bit Operating systems & Components / Operating system package or component xen-libs-64bit-debuginfo Operating systems & Components / Operating system package or component xen-doc-html Operating systems & Components / Operating system package or component xen-libs-32bit Operating systems & Components / Operating system package or component xen-libs-32bit-debuginfo Operating systems & Components / Operating system package or component xen-tools-domU Operating systems & Components / Operating system package or component xen-tools-domU-debuginfo Operating systems & Components / Operating system package or component xen-libs Operating systems & Components / Operating system package or component xen-libs-debuginfo Operating systems & Components / Operating system package or component xen-tools-xendomains-wait-disk Operating systems & Components / Operating system package or component xen-tools Operating systems & Components / Operating system package or component xen-devel Operating systems & Components / Operating system package or component xen-debugsource Operating systems & Components / Operating system package or component xen Operating systems & Components / Operating system package or component xen-tools-debuginfo Operating systems & Components / Operating system package or component |
| Vendor | SUSE |
Security Bulletin
This security bulletin contains one high risk vulnerability.
1) Resource management error
EUVDB-ID: #VU109000
Risk: High
CVSSv4.0: 7.2 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-28956
CWE-ID:
CWE-399 - Resource Management Errors
Exploit availability: No
DescriptionThe vulnerability allows a malicious guest to escalate privileges on the system.
The vulnerability exists due to an error in the hardware support for prediction-domain isolation dubbed "Indirect Target Selection". A malicious guest can infer the contents of arbitrary host memory, including memory assigned to other guests.
MitigationUpdate the affected package xen to the latest version.
Vulnerable software versionsServer Applications Module: 15-SP6
Basesystem Module: 15-SP6
SUSE Linux Enterprise Real Time 15: SP6
openSUSE Leap: 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP6
SUSE Linux Enterprise Server 15: SP6
SUSE Linux Enterprise Desktop 15: SP6
xen-libs-64bit: before 4.18.5_02-150600.3.23.1
xen-libs-64bit-debuginfo: before 4.18.5_02-150600.3.23.1
xen-doc-html: before 4.18.5_02-150600.3.23.1
xen-libs-32bit: before 4.18.5_02-150600.3.23.1
xen-libs-32bit-debuginfo: before 4.18.5_02-150600.3.23.1
xen-tools-domU: before 4.18.5_02-150600.3.23.1
xen-tools-domU-debuginfo: before 4.18.5_02-150600.3.23.1
xen-libs: before 4.18.5_02-150600.3.23.1
xen-libs-debuginfo: before 4.18.5_02-150600.3.23.1
xen-tools-xendomains-wait-disk: before 4.18.5_02-150600.3.23.1
xen-tools: before 4.18.5_02-150600.3.23.1
xen-devel: before 4.18.5_02-150600.3.23.1
xen-debugsource: before 4.18.5_02-150600.3.23.1
xen: before 4.18.5_02-150600.3.23.1
xen-tools-debuginfo: before 4.18.5_02-150600.3.23.1
CPE2.3- cpe:2.3:o:suse:server_applications_module:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:a:suse:xen-libs-64bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-libs-64bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-doc-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-libs-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-libs-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-tools-domu:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-tools-domu-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-libs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-libs-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-tools-xendomains-wait-disk:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-tools:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:xen-tools-debuginfo:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2025/suse-su-202501703-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
