SUSE-SU-2015:0701-1

Advisory lineage Upstream: 3 Downstream: 0

Upstream

CVE-2015-2751 CVE-2015-2752 CVE-2015-2756

Published: 01 Apr 2015, 15:24

Last modified:04 Feb 2026, 03:14

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

01 Apr 2015, 15:24

Published

Vulnerability first disclosed

04 Feb 2026, 03:14

Last Modified

Vulnerability information updated

Description

Security update for xen Xen was updated 4.4.2_01 to address three security issues and functional bugs. The following vulnerabilities were fixed: - Long latency MMIO mapping operations are not preemptible (XSA-125, CVE-2015-2752, bnc#922705) - Unmediated PCI command register access in qemu (XSA-126, CVE-2015-2756, bnc#922706) - Certain domctl operations may be abused to lock up the host (XSA-127, CVE-2015-2751, bnc#922709) The following non-security bugs were fixed: - xen dmesg contains bogus output in early boot (bnc#923758) - Xentop doesn't display disk statistics for VMs using qdisks (bnc#921842) The following functionality was enabled: - Enable spice support in qemu for x86_64 - Add Qxl vga support

Affected Systems

suse•xen&distro=SUSE Linux Enterprise Desktop 12
< 4.4.2_02-15.1
suse•xen&distro=SUSE Linux Enterprise Server 12
< 4.4.2_02-15.1
suse•xen&distro=SUSE Linux Enterprise Server for SAP Applications 12
< 4.4.2_02-15.1
suse•xen&distro=SUSE Linux Enterprise Software Development Kit 12
< 4.4.2_02-15.1

SUSE-SU-2015:0701-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (9)