SUSE-SU-2024:0830-1
Advisory lineage Upstream: 3 Downstream: 0
Published: 11 Mar 2024, 08:38
Last modified:04 Feb 2026, 03:39
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
11 Mar 2024, 08:38
Published
Vulnerability first disclosed
04 Feb 2026, 03:39
Last Modified
Vulnerability information updated
Description
Security update for xen This update for xen fixes the following issues: - CVE-2023-46839: Fixed memory access through PCI device with phantom functions (XSA-449) (bsc#1218851). - CVE-2023-46840: Fixed Failure to quarantine devices in !HVM builds (XSA-450) (bsc#1219080). - CVE-2023-46841: Fixed shadow stack vs exceptions from emulation stubs (XSA-451) (bsc#1219885).
Affected Systems
- opensuse•xen&distro=openSUSE Leap 15.5
< 4.17.3_06-150500.3.24.1
- suse•xen&distro=SUSE Linux Enterprise Micro 5.5
< 4.17.3_06-150500.3.24.1
- suse•xen&distro=SUSE Linux Enterprise Module for Basesystem 15 SP5
< 4.17.3_06-150500.3.24.1
- suse•xen&distro=SUSE Linux Enterprise Module for Server Applications 15 SP5
< 4.17.3_06-150500.3.24.1
References (8)
- https://www.suse.com/support/update/announcement/2024/suse-su-20240830-1/
- https://bugzilla.suse.com/1027519
- https://bugzilla.suse.com/1218851
- https://bugzilla.suse.com/1219080
- https://bugzilla.suse.com/1219885
- https://www.suse.com/security/cve/CVE-2023-46839
- https://www.suse.com/security/cve/CVE-2023-46840
- https://www.suse.com/security/cve/CVE-2023-46841