SUSE Security Update: Security update for xen ______________________________________________________________________________
Announcement ID: SUSE-SU-2019:1348-1 Rating: important References: #1027519 #1111331 #1130680 Cross-References: CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-20815 CVE-2019-11091 Affected Products: SUSE Linux Enterprise Server 12-LTSS ______________________________________________________________________________
An update that fixes 5 vulnerabilities is now available.
Description:
This update for xen fixes the following issues:
Four new speculative execution information leak issues have been identified in Intel CPUs. (bsc#1111331)
- CVE-2018-12126: Microarchitectural Store Buffer Data Sampling (MSBDS) - CVE-2018-12127: Microarchitectural Fill Buffer Data Sampling (MFBDS) - CVE-2018-12130: Microarchitectural Load Port Data Sampling (MLPDS) - CVE-2019-11091: Microarchitectural Data Sampling Uncacheable Memory (MDSUM)
These updates contain the XEN Hypervisor adjustments, that additionally also use CPU Microcode updates.
The mitigation can be controlled via the "mds" commandline option, see the documentation.