Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-27465 (GCVE-0-2025-27465)
Vulnerability from cvelistv5 – Published: 2025-07-16 09:08 – Updated: 2025-11-04 21:09
VLAI
EPSS
Title
x86: Incorrect stubs exception handling for flags recovery
Summary
Certain instructions need intercepting and emulating by Xen. In some
cases Xen emulates the instruction by replaying it, using an executable
stub. Some instructions may raise an exception, which is supposed to be
handled gracefully. Certain replayed instructions have additional logic
to set up and recover the changes to the arithmetic flags.
For replayed instructions where the flags recovery logic is used, the
metadata for exception handling was incorrect, preventing Xen from
handling the the exception gracefully, treating it as fatal instead.
Severity
4.3 (Medium)
CWE
- CWE-755 - Improper Handling of Exceptional Conditions
Assigner
References
1 reference
Date Public
2025-07-01 11:56
Credits
This issue was discovered by Andrew Cooper of XenServer.
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2025-27465",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-07-16T20:46:06.289437Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-755",
"description": "CWE-755 Improper Handling of Exceptional Conditions",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-07-17T15:00:57.741Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2025-11-04T21:09:50.127Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "http://xenbits.xen.org/xsa/advisory-470.html"
},
{
"url": "http://www.openwall.com/lists/oss-security/2025/07/01/1"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "Xen",
"vendor": "Xen",
"versions": [
{
"status": "unknown",
"version": "consult Xen advisory XSA-470"
}
]
}
],
"configurations": [
{
"lang": "en",
"value": "Xen 4.9 and onwards are vulnerable. Xen 4.8 and older are not\nvulnerable.\n\nOnly x86 systems are vulnerable. ARM systems are not vulnerable.\n\nOnly HVM or PVH guests can leverage the vulnerability. PV guests cannot\nleverage the vulnerability."
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "This issue was discovered by Andrew Cooper of XenServer."
}
],
"datePublic": "2025-07-01T11:56:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Certain instructions need intercepting and emulating by Xen. In some\ncases Xen emulates the instruction by replaying it, using an executable\nstub. Some instructions may raise an exception, which is supposed to be\nhandled gracefully. Certain replayed instructions have additional logic\nto set up and recover the changes to the arithmetic flags.\n\nFor replayed instructions where the flags recovery logic is used, the\nmetadata for exception handling was incorrect, preventing Xen from\nhandling the the exception gracefully, treating it as fatal instead."
}
],
"impacts": [
{
"descriptions": [
{
"lang": "en",
"value": "An unprivileged guest can cause a hypervisor crash, causing a Denial of\nService (DoS) of the entire host."
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-07-16T09:08:39.931Z",
"orgId": "23aa2041-22e1-471f-9209-9b7396fa234f",
"shortName": "XEN"
},
"references": [
{
"url": "https://xenbits.xenproject.org/xsa/advisory-470.html"
}
],
"title": "x86: Incorrect stubs exception handling for flags recovery",
"workarounds": [
{
"lang": "en",
"value": "There are no mitigations."
}
]
}
},
"cveMetadata": {
"assignerOrgId": "23aa2041-22e1-471f-9209-9b7396fa234f",
"assignerShortName": "XEN",
"cveId": "CVE-2025-27465",
"datePublished": "2025-07-16T09:08:39.931Z",
"dateReserved": "2025-02-26T09:16:54.461Z",
"dateUpdated": "2025-11-04T21:09:50.127Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-27465",
"date": "2026-05-27",
"epss": "0.00339",
"percentile": "0.56784"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-27465\",\"sourceIdentifier\":\"security@xen.org\",\"published\":\"2025-07-16T09:15:23.040\",\"lastModified\":\"2026-01-13T22:13:34.590\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Certain instructions need intercepting and emulating by Xen. In some\\ncases Xen emulates the instruction by replaying it, using an executable\\nstub. Some instructions may raise an exception, which is supposed to be\\nhandled gracefully. Certain replayed instructions have additional logic\\nto set up and recover the changes to the arithmetic flags.\\n\\nFor replayed instructions where the flags recovery logic is used, the\\nmetadata for exception handling was incorrect, preventing Xen from\\nhandling the the exception gracefully, treating it as fatal instead.\"},{\"lang\":\"es\",\"value\":\"Ciertas instrucciones requieren ser interceptadas y emuladas por Xen. En algunos casos, Xen emula la instrucci\u00f3n repiti\u00e9ndola mediante un stub ejecutable. Algunas instrucciones pueden generar una excepci\u00f3n, que deber\u00eda gestionarse correctamente. Algunas instrucciones repetidas tienen l\u00f3gica adicional para configurar y recuperar los cambios en las banderas aritm\u00e9ticas. En las instrucciones repetidas donde se utiliza la l\u00f3gica de recuperaci\u00f3n de banderas, los metadatos para la gesti\u00f3n de excepciones eran incorrectos, lo que impidi\u00f3 que Xen la gestionara correctamente, trat\u00e1ndola como fatal.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L\",\"baseScore\":4.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.8,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-755\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*\",\"versionStartIncluding\":\"4.9.0\",\"matchCriteriaId\":\"6730EA5A-AAE6-4C6F-963C-EBE9E4AA4D48\"}]}]}],\"references\":[{\"url\":\"https://xenbits.xenproject.org/xsa/advisory-470.html\",\"source\":\"security@xen.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2025/07/01/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://xenbits.xen.org/xsa/advisory-470.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://xenbits.xen.org/xsa/advisory-470.html\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2025/07/01/1\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-04T21:09:50.127Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 4.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-27465\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-07-16T20:46:06.289437Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-755\", \"description\": \"CWE-755 Improper Handling of Exceptional Conditions\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-07-16T20:46:28.330Z\"}}], \"cna\": {\"title\": \"x86: Incorrect stubs exception handling for flags recovery\", \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"This issue was discovered by Andrew Cooper of XenServer.\"}], \"impacts\": [{\"descriptions\": [{\"lang\": \"en\", \"value\": \"An unprivileged guest can cause a hypervisor crash, causing a Denial of\\nService (DoS) of the entire host.\"}]}], \"affected\": [{\"vendor\": \"Xen\", \"product\": \"Xen\", \"versions\": [{\"status\": \"unknown\", \"version\": \"consult Xen advisory XSA-470\"}], \"defaultStatus\": \"unknown\"}], \"datePublic\": \"2025-07-01T11:56:00.000Z\", \"references\": [{\"url\": \"https://xenbits.xenproject.org/xsa/advisory-470.html\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"There are no mitigations.\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Certain instructions need intercepting and emulating by Xen. In some\\ncases Xen emulates the instruction by replaying it, using an executable\\nstub. Some instructions may raise an exception, which is supposed to be\\nhandled gracefully. Certain replayed instructions have additional logic\\nto set up and recover the changes to the arithmetic flags.\\n\\nFor replayed instructions where the flags recovery logic is used, the\\nmetadata for exception handling was incorrect, preventing Xen from\\nhandling the the exception gracefully, treating it as fatal instead.\"}], \"configurations\": [{\"lang\": \"en\", \"value\": \"Xen 4.9 and onwards are vulnerable. Xen 4.8 and older are not\\nvulnerable.\\n\\nOnly x86 systems are vulnerable. ARM systems are not vulnerable.\\n\\nOnly HVM or PVH guests can leverage the vulnerability. PV guests cannot\\nleverage the vulnerability.\"}], \"providerMetadata\": {\"orgId\": \"23aa2041-22e1-471f-9209-9b7396fa234f\", \"shortName\": \"XEN\", \"dateUpdated\": \"2025-07-16T09:08:39.931Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-27465\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-04T21:09:50.127Z\", \"dateReserved\": \"2025-02-26T09:16:54.461Z\", \"assignerOrgId\": \"23aa2041-22e1-471f-9209-9b7396fa234f\", \"datePublished\": \"2025-07-16T09:08:39.931Z\", \"assignerShortName\": \"XEN\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
CERTFR-2025-AVI-0551
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité a été découverte dans Xen. Elle permet à un attaquant de provoquer un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Xen versions post\u00e9rieures \u00e0 4.9.x sans les correctifs de s\u00e9curit\u00e9 xsa470.patch et xsa470-4.17.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-27465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27465"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0551",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-07-02T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Xen. Elle permet \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance.",
"title": "Vuln\u00e9rabilit\u00e9 dans Xen",
"vendor_advisories": [
{
"published_at": "2025-07-01",
"title": "Bulletin de s\u00e9curit\u00e9 Xen xsa/advisory-470",
"url": "https://xenbits.xen.org/xsa/advisory-470.html"
}
]
}
CERTFR-2025-AVI-0556
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité a été découverte dans Citrix XenServer. Elle permet à un attaquant de provoquer un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
L’éditeur indique que le produit Hypervisor en version 8.2 CU1 est en fin de vie et ne bénéficie plus de mises à jour de sécurité.
Impacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "XenServer 8.4 sans le dernier correctif de s\u00e9curit\u00e9",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
}
],
"affected_systems_content": "L\u2019\u00e9diteur indique que le produit Hypervisor en version 8.2 CU1 est en fin de vie et ne b\u00e9n\u00e9ficie plus de mises \u00e0 jour de s\u00e9curit\u00e9.",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-27465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27465"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0556",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-07-03T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Citrix XenServer. Elle permet \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance.",
"title": "Vuln\u00e9rabilit\u00e9 dans Citrix XenServer",
"vendor_advisories": [
{
"published_at": "2025-07-02",
"title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX694780",
"url": "https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694780\u0026articleURL=XenServer_Security_Update_for_CVE_2025_27465"
}
]
}
CERTFR-2025-AVI-0551
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité a été découverte dans Xen. Elle permet à un attaquant de provoquer un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Xen versions post\u00e9rieures \u00e0 4.9.x sans les correctifs de s\u00e9curit\u00e9 xsa470.patch et xsa470-4.17.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-27465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27465"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0551",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-07-02T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Xen. Elle permet \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance.",
"title": "Vuln\u00e9rabilit\u00e9 dans Xen",
"vendor_advisories": [
{
"published_at": "2025-07-01",
"title": "Bulletin de s\u00e9curit\u00e9 Xen xsa/advisory-470",
"url": "https://xenbits.xen.org/xsa/advisory-470.html"
}
]
}
CERTFR-2025-AVI-0556
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité a été découverte dans Citrix XenServer. Elle permet à un attaquant de provoquer un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
L’éditeur indique que le produit Hypervisor en version 8.2 CU1 est en fin de vie et ne bénéficie plus de mises à jour de sécurité.
Impacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "XenServer 8.4 sans le dernier correctif de s\u00e9curit\u00e9",
"product": {
"name": "XenServer",
"vendor": {
"name": "Citrix",
"scada": false
}
}
}
],
"affected_systems_content": "L\u2019\u00e9diteur indique que le produit Hypervisor en version 8.2 CU1 est en fin de vie et ne b\u00e9n\u00e9ficie plus de mises \u00e0 jour de s\u00e9curit\u00e9.",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-27465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27465"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0556",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-07-03T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Citrix XenServer. Elle permet \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance.",
"title": "Vuln\u00e9rabilit\u00e9 dans Citrix XenServer",
"vendor_advisories": [
{
"published_at": "2025-07-02",
"title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX694780",
"url": "https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694780\u0026articleURL=XenServer_Security_Update_for_CVE_2025_27465"
}
]
}
BDU:2025-12579
Vulnerability from fstec - Published: 01.07.2025
VLAI
Title
Уязвимость гипервизора Xen, связанная с некорректной зачисткой или освобождением ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
Description
Уязвимость гипервизора Xen связана с некорректной зачисткой или освобождением ресурсов. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании
Severity
Vendor
ООО «Ред Софт», The Linux Foundation
Software Name
РЕД ОС (запись в едином реестре российских программ №3751), Xen
Software Version
7.3 (РЕД ОС), 4.9 (Xen)
Possible Mitigations
Использование рекомендаций:
https://xenbits.xenproject.org/xsa/advisory-470.html
Для РедОС:
http://repo.red-soft.ru/redos/7.3c/x86_64/updates/
Reference
https://xenbits.xenproject.org/xsa/advisory-470.html
http://repo.red-soft.ru/redos/7.3c/x86_64/updates/
CWE
CWE-404
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb, The Linux Foundation",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "7.3 (\u0420\u0415\u0414 \u041e\u0421), 4.9 (Xen)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://xenbits.xenproject.org/xsa/advisory-470.html\n\n\u0414\u043b\u044f \u0420\u0435\u0434\u041e\u0421:\nhttp://repo.red-soft.ru/redos/7.3c/x86_64/updates/",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "01.07.2025",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "08.10.2025",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "08.10.2025",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2025-12579",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2025-27465",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "\u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Xen",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.3 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440\u0430 Xen, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e\u0439 \u0437\u0430\u0447\u0438\u0441\u0442\u043a\u043e\u0439 \u0438\u043b\u0438 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u0435\u043c \u0440\u0435\u0441\u0443\u0440\u0441\u043e\u0432, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u0430\u044f \u0437\u0430\u0447\u0438\u0441\u0442\u043a\u0430 \u0438\u043b\u0438 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u043e\u0432 (CWE-404)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440\u0430 Xen \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e\u0439 \u0437\u0430\u0447\u0438\u0441\u0442\u043a\u043e\u0439 \u0438\u043b\u0438 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u0435\u043c \u0440\u0435\u0441\u0443\u0440\u0441\u043e\u0432. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u0418\u0441\u0447\u0435\u0440\u043f\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u043e\u0432",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://xenbits.xenproject.org/xsa/advisory-470.html\nhttp://repo.red-soft.ru/redos/7.3c/x86_64/updates/",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u041e \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438/\u041f\u041e \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-404",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,4)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,5)"
}
FKIE_CVE-2025-27465
Vulnerability from fkie_nvd - Published: 2025-07-16 09:15 - Updated: 2026-01-13 22:13
Severity
Summary
Certain instructions need intercepting and emulating by Xen. In some
cases Xen emulates the instruction by replaying it, using an executable
stub. Some instructions may raise an exception, which is supposed to be
handled gracefully. Certain replayed instructions have additional logic
to set up and recover the changes to the arithmetic flags.
For replayed instructions where the flags recovery logic is used, the
metadata for exception handling was incorrect, preventing Xen from
handling the the exception gracefully, treating it as fatal instead.
References
| URL | Tags | ||
|---|---|---|---|
| security@xen.org | https://xenbits.xenproject.org/xsa/advisory-470.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2025/07/01/1 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://xenbits.xen.org/xsa/advisory-470.html | Patch, Vendor Advisory |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*",
"matchCriteriaId": "6730EA5A-AAE6-4C6F-963C-EBE9E4AA4D48",
"versionStartIncluding": "4.9.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Certain instructions need intercepting and emulating by Xen. In some\ncases Xen emulates the instruction by replaying it, using an executable\nstub. Some instructions may raise an exception, which is supposed to be\nhandled gracefully. Certain replayed instructions have additional logic\nto set up and recover the changes to the arithmetic flags.\n\nFor replayed instructions where the flags recovery logic is used, the\nmetadata for exception handling was incorrect, preventing Xen from\nhandling the the exception gracefully, treating it as fatal instead."
},
{
"lang": "es",
"value": "Ciertas instrucciones requieren ser interceptadas y emuladas por Xen. En algunos casos, Xen emula la instrucci\u00f3n repiti\u00e9ndola mediante un stub ejecutable. Algunas instrucciones pueden generar una excepci\u00f3n, que deber\u00eda gestionarse correctamente. Algunas instrucciones repetidas tienen l\u00f3gica adicional para configurar y recuperar los cambios en las banderas aritm\u00e9ticas. En las instrucciones repetidas donde se utiliza la l\u00f3gica de recuperaci\u00f3n de banderas, los metadatos para la gesti\u00f3n de excepciones eran incorrectos, lo que impidi\u00f3 que Xen la gestionara correctamente, trat\u00e1ndola como fatal."
}
],
"id": "CVE-2025-27465",
"lastModified": "2026-01-13T22:13:34.590",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2025-07-16T09:15:23.040",
"references": [
{
"source": "security@xen.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://xenbits.xenproject.org/xsa/advisory-470.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2025/07/01/1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://xenbits.xen.org/xsa/advisory-470.html"
}
],
"sourceIdentifier": "security@xen.org",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-755"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
GHSA-2VP3-CRWQ-3FG5
Vulnerability from github – Published: 2025-07-16 09:31 – Updated: 2025-11-05 00:31
VLAI
Details
Certain instructions need intercepting and emulating by Xen. In some cases Xen emulates the instruction by replaying it, using an executable stub. Some instructions may raise an exception, which is supposed to be handled gracefully. Certain replayed instructions have additional logic to set up and recover the changes to the arithmetic flags.
For replayed instructions where the flags recovery logic is used, the metadata for exception handling was incorrect, preventing Xen from handling the the exception gracefully, treating it as fatal instead.
Severity
6.5 (Medium)
{
"affected": [],
"aliases": [
"CVE-2025-27465"
],
"database_specific": {
"cwe_ids": [
"CWE-755"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-07-16T09:15:23Z",
"severity": "MODERATE"
},
"details": "Certain instructions need intercepting and emulating by Xen. In some\ncases Xen emulates the instruction by replaying it, using an executable\nstub. Some instructions may raise an exception, which is supposed to be\nhandled gracefully. Certain replayed instructions have additional logic\nto set up and recover the changes to the arithmetic flags.\n\nFor replayed instructions where the flags recovery logic is used, the\nmetadata for exception handling was incorrect, preventing Xen from\nhandling the the exception gracefully, treating it as fatal instead.",
"id": "GHSA-2vp3-crwq-3fg5",
"modified": "2025-11-05T00:31:21Z",
"published": "2025-07-16T09:31:05Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27465"
},
{
"type": "WEB",
"url": "https://xenbits.xenproject.org/xsa/advisory-470.html"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2025/07/01/1"
},
{
"type": "WEB",
"url": "http://xenbits.xen.org/xsa/advisory-470.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"type": "CVSS_V3"
}
]
}
OPENSUSE-SU-2025:15342-1
Vulnerability from csaf_opensuse - Published: 2025-07-11 00:00 - Updated: 2025-07-11 00:00Summary
xen-4.20.1_02-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: xen-4.20.1_02-1.1 on GA media
Description of the patch: These are all security issues fixed in the xen-4.20.1_02-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-15342
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.1 (High)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:xen-4.20.1_02-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.20.1_02-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.20.1_02-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.20.1_02-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
5 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "xen-4.20.1_02-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the xen-4.20.1_02-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15342",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15342-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27465 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27465/"
}
],
"title": "xen-4.20.1_02-1.1 on GA media",
"tracking": {
"current_release_date": "2025-07-11T00:00:00Z",
"generator": {
"date": "2025-07-11T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15342-1",
"initial_release_date": "2025-07-11T00:00:00Z",
"revision_history": [
{
"date": "2025-07-11T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.20.1_02-1.1.aarch64",
"product": {
"name": "xen-4.20.1_02-1.1.aarch64",
"product_id": "xen-4.20.1_02-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.20.1_02-1.1.aarch64",
"product": {
"name": "xen-devel-4.20.1_02-1.1.aarch64",
"product_id": "xen-devel-4.20.1_02-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.20.1_02-1.1.aarch64",
"product": {
"name": "xen-doc-html-4.20.1_02-1.1.aarch64",
"product_id": "xen-doc-html-4.20.1_02-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.20.1_02-1.1.aarch64",
"product": {
"name": "xen-libs-4.20.1_02-1.1.aarch64",
"product_id": "xen-libs-4.20.1_02-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.20.1_02-1.1.aarch64",
"product": {
"name": "xen-tools-4.20.1_02-1.1.aarch64",
"product_id": "xen-tools-4.20.1_02-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.20.1_02-1.1.aarch64",
"product": {
"name": "xen-tools-domU-4.20.1_02-1.1.aarch64",
"product_id": "xen-tools-domU-4.20.1_02-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.aarch64",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.aarch64",
"product_id": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.20.1_02-1.1.ppc64le",
"product": {
"name": "xen-4.20.1_02-1.1.ppc64le",
"product_id": "xen-4.20.1_02-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-devel-4.20.1_02-1.1.ppc64le",
"product": {
"name": "xen-devel-4.20.1_02-1.1.ppc64le",
"product_id": "xen-devel-4.20.1_02-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.20.1_02-1.1.ppc64le",
"product": {
"name": "xen-doc-html-4.20.1_02-1.1.ppc64le",
"product_id": "xen-doc-html-4.20.1_02-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-libs-4.20.1_02-1.1.ppc64le",
"product": {
"name": "xen-libs-4.20.1_02-1.1.ppc64le",
"product_id": "xen-libs-4.20.1_02-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-tools-4.20.1_02-1.1.ppc64le",
"product": {
"name": "xen-tools-4.20.1_02-1.1.ppc64le",
"product_id": "xen-tools-4.20.1_02-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.20.1_02-1.1.ppc64le",
"product": {
"name": "xen-tools-domU-4.20.1_02-1.1.ppc64le",
"product_id": "xen-tools-domU-4.20.1_02-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.ppc64le",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.ppc64le",
"product_id": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.20.1_02-1.1.s390x",
"product": {
"name": "xen-4.20.1_02-1.1.s390x",
"product_id": "xen-4.20.1_02-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-devel-4.20.1_02-1.1.s390x",
"product": {
"name": "xen-devel-4.20.1_02-1.1.s390x",
"product_id": "xen-devel-4.20.1_02-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.20.1_02-1.1.s390x",
"product": {
"name": "xen-doc-html-4.20.1_02-1.1.s390x",
"product_id": "xen-doc-html-4.20.1_02-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-libs-4.20.1_02-1.1.s390x",
"product": {
"name": "xen-libs-4.20.1_02-1.1.s390x",
"product_id": "xen-libs-4.20.1_02-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-tools-4.20.1_02-1.1.s390x",
"product": {
"name": "xen-tools-4.20.1_02-1.1.s390x",
"product_id": "xen-tools-4.20.1_02-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.20.1_02-1.1.s390x",
"product": {
"name": "xen-tools-domU-4.20.1_02-1.1.s390x",
"product_id": "xen-tools-domU-4.20.1_02-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.s390x",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.s390x",
"product_id": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.20.1_02-1.1.x86_64",
"product": {
"name": "xen-4.20.1_02-1.1.x86_64",
"product_id": "xen-4.20.1_02-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.20.1_02-1.1.x86_64",
"product": {
"name": "xen-devel-4.20.1_02-1.1.x86_64",
"product_id": "xen-devel-4.20.1_02-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.20.1_02-1.1.x86_64",
"product": {
"name": "xen-doc-html-4.20.1_02-1.1.x86_64",
"product_id": "xen-doc-html-4.20.1_02-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.20.1_02-1.1.x86_64",
"product": {
"name": "xen-libs-4.20.1_02-1.1.x86_64",
"product_id": "xen-libs-4.20.1_02-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.20.1_02-1.1.x86_64",
"product": {
"name": "xen-tools-4.20.1_02-1.1.x86_64",
"product_id": "xen-tools-4.20.1_02-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.20.1_02-1.1.x86_64",
"product": {
"name": "xen-tools-domU-4.20.1_02-1.1.x86_64",
"product_id": "xen-tools-domU-4.20.1_02-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.x86_64",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.x86_64",
"product_id": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.20.1_02-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.20.1_02-1.1.aarch64"
},
"product_reference": "xen-4.20.1_02-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.20.1_02-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.20.1_02-1.1.ppc64le"
},
"product_reference": "xen-4.20.1_02-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.20.1_02-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.20.1_02-1.1.s390x"
},
"product_reference": "xen-4.20.1_02-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.20.1_02-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.20.1_02-1.1.x86_64"
},
"product_reference": "xen-4.20.1_02-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.20.1_02-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.aarch64"
},
"product_reference": "xen-devel-4.20.1_02-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.20.1_02-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.ppc64le"
},
"product_reference": "xen-devel-4.20.1_02-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.20.1_02-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.s390x"
},
"product_reference": "xen-devel-4.20.1_02-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.20.1_02-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.x86_64"
},
"product_reference": "xen-devel-4.20.1_02-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.20.1_02-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.aarch64"
},
"product_reference": "xen-doc-html-4.20.1_02-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.20.1_02-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.ppc64le"
},
"product_reference": "xen-doc-html-4.20.1_02-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.20.1_02-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.s390x"
},
"product_reference": "xen-doc-html-4.20.1_02-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.20.1_02-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.x86_64"
},
"product_reference": "xen-doc-html-4.20.1_02-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.20.1_02-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.aarch64"
},
"product_reference": "xen-libs-4.20.1_02-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.20.1_02-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.ppc64le"
},
"product_reference": "xen-libs-4.20.1_02-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.20.1_02-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.s390x"
},
"product_reference": "xen-libs-4.20.1_02-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.20.1_02-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.x86_64"
},
"product_reference": "xen-libs-4.20.1_02-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.20.1_02-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.aarch64"
},
"product_reference": "xen-tools-4.20.1_02-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.20.1_02-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.ppc64le"
},
"product_reference": "xen-tools-4.20.1_02-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.20.1_02-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.s390x"
},
"product_reference": "xen-tools-4.20.1_02-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.20.1_02-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.x86_64"
},
"product_reference": "xen-tools-4.20.1_02-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.20.1_02-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.aarch64"
},
"product_reference": "xen-tools-domU-4.20.1_02-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.20.1_02-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.ppc64le"
},
"product_reference": "xen-tools-domU-4.20.1_02-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.20.1_02-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.s390x"
},
"product_reference": "xen-tools-domU-4.20.1_02-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.20.1_02-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.x86_64"
},
"product_reference": "xen-tools-domU-4.20.1_02-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.aarch64"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.ppc64le"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.s390x"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.x86_64"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.20.1_02-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-27465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27465"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:xen-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27465",
"url": "https://www.suse.com/security/cve/CVE-2025-27465"
},
{
"category": "external",
"summary": "SUSE Bug 1244644 for CVE-2025-27465",
"url": "https://bugzilla.suse.com/1244644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:xen-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:xen-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.20.1_02-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.20.1_02-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-11T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-27465"
}
]
}
SUSE-SU-2025:02315-1
Vulnerability from csaf_suse - Published: 2025-07-15 12:59 - Updated: 2025-07-15 12:59Summary
Security update for xen
Severity
Important
Notes
Title of the patch: Security update for xen
Description of the patch: This update for xen fixes the following issues:
- Update to Xen 4.20.1
- CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks (bsc#1246112, XSA-471)
- CVE-2025-27465: Incorrect stubs exception handling for flags recovery (bsc#1244644, XSA-470)
Patchnames: SUSE-2025-2315,SUSE-SLE-Module-Basesystem-15-SP7-2025-2315,SUSE-SLE-Module-Server-Applications-15-SP7-2025-2315
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.1 (High)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-4.20.1_02-150700.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- Update to Xen 4.20.1\n- CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks (bsc#1246112, XSA-471)\n- CVE-2025-27465: Incorrect stubs exception handling for flags recovery (bsc#1244644, XSA-470)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-2315,SUSE-SLE-Module-Basesystem-15-SP7-2025-2315,SUSE-SLE-Module-Server-Applications-15-SP7-2025-2315",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_02315-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:02315-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202502315-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:02315-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021817.html"
},
{
"category": "self",
"summary": "SUSE Bug 1027519",
"url": "https://bugzilla.suse.com/1027519"
},
{
"category": "self",
"summary": "SUSE Bug 1238896",
"url": "https://bugzilla.suse.com/1238896"
},
{
"category": "self",
"summary": "SUSE Bug 1244644",
"url": "https://bugzilla.suse.com/1244644"
},
{
"category": "self",
"summary": "SUSE Bug 1246112",
"url": "https://bugzilla.suse.com/1246112"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36350 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36357 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36357/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27465 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27465/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2025-07-15T12:59:13Z",
"generator": {
"date": "2025-07-15T12:59:13Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:02315-1",
"initial_release_date": "2025-07-15T12:59:13Z",
"revision_history": [
{
"date": "2025-07-15T12:59:13Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.20.1_02-150700.3.8.1.aarch64",
"product": {
"name": "xen-4.20.1_02-150700.3.8.1.aarch64",
"product_id": "xen-4.20.1_02-150700.3.8.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.20.1_02-150700.3.8.1.aarch64",
"product": {
"name": "xen-devel-4.20.1_02-150700.3.8.1.aarch64",
"product_id": "xen-devel-4.20.1_02-150700.3.8.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.20.1_02-150700.3.8.1.aarch64",
"product": {
"name": "xen-doc-html-4.20.1_02-150700.3.8.1.aarch64",
"product_id": "xen-doc-html-4.20.1_02-150700.3.8.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.20.1_02-150700.3.8.1.aarch64",
"product": {
"name": "xen-libs-4.20.1_02-150700.3.8.1.aarch64",
"product_id": "xen-libs-4.20.1_02-150700.3.8.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.20.1_02-150700.3.8.1.aarch64",
"product": {
"name": "xen-tools-4.20.1_02-150700.3.8.1.aarch64",
"product_id": "xen-tools-4.20.1_02-150700.3.8.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.20.1_02-150700.3.8.1.aarch64",
"product": {
"name": "xen-tools-domU-4.20.1_02-150700.3.8.1.aarch64",
"product_id": "xen-tools-domU-4.20.1_02-150700.3.8.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.20.1_02-150700.3.8.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.20.1_02-150700.3.8.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.20.1_02-150700.3.8.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.20.1_02-150700.3.8.1.i586",
"product": {
"name": "xen-devel-4.20.1_02-150700.3.8.1.i586",
"product_id": "xen-devel-4.20.1_02-150700.3.8.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.20.1_02-150700.3.8.1.i586",
"product": {
"name": "xen-libs-4.20.1_02-150700.3.8.1.i586",
"product_id": "xen-libs-4.20.1_02-150700.3.8.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.20.1_02-150700.3.8.1.i586",
"product": {
"name": "xen-tools-domU-4.20.1_02-150700.3.8.1.i586",
"product_id": "xen-tools-domU-4.20.1_02-150700.3.8.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch",
"product_id": "xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.20.1_02-150700.3.8.1.x86_64",
"product": {
"name": "xen-4.20.1_02-150700.3.8.1.x86_64",
"product_id": "xen-4.20.1_02-150700.3.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.20.1_02-150700.3.8.1.x86_64",
"product": {
"name": "xen-devel-4.20.1_02-150700.3.8.1.x86_64",
"product_id": "xen-devel-4.20.1_02-150700.3.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.20.1_02-150700.3.8.1.x86_64",
"product": {
"name": "xen-doc-html-4.20.1_02-150700.3.8.1.x86_64",
"product_id": "xen-doc-html-4.20.1_02-150700.3.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.20.1_02-150700.3.8.1.x86_64",
"product": {
"name": "xen-libs-4.20.1_02-150700.3.8.1.x86_64",
"product_id": "xen-libs-4.20.1_02-150700.3.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.20.1_02-150700.3.8.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.20.1_02-150700.3.8.1.x86_64",
"product_id": "xen-libs-32bit-4.20.1_02-150700.3.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.20.1_02-150700.3.8.1.x86_64",
"product": {
"name": "xen-tools-4.20.1_02-150700.3.8.1.x86_64",
"product_id": "xen-tools-4.20.1_02-150700.3.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64",
"product": {
"name": "xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64",
"product_id": "xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.20.1_02-150700.3.8.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.1_02-150700.3.8.1.x86_64"
},
"product_reference": "xen-libs-4.20.1_02-150700.3.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64"
},
"product_reference": "xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.20.1_02-150700.3.8.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.1_02-150700.3.8.1.x86_64"
},
"product_reference": "xen-4.20.1_02-150700.3.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.20.1_02-150700.3.8.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.1_02-150700.3.8.1.x86_64"
},
"product_reference": "xen-devel-4.20.1_02-150700.3.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.20.1_02-150700.3.8.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-4.20.1_02-150700.3.8.1.x86_64"
},
"product_reference": "xen-tools-4.20.1_02-150700.3.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-36350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36350"
}
],
"notes": [
{
"category": "general",
"text": "A transient execution vulnerability in some AMD processors may allow an attacker to infer data from previous stores, potentially resulting in the leakage of privileged information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36350",
"url": "https://www.suse.com/security/cve/CVE-2024-36350"
},
{
"category": "external",
"summary": "SUSE Bug 1238896 for CVE-2024-36350",
"url": "https://bugzilla.suse.com/1238896"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-15T12:59:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-36350"
},
{
"cve": "CVE-2024-36357",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36357"
}
],
"notes": [
{
"category": "general",
"text": "A transient execution vulnerability in some AMD processors may allow an attacker to infer data in the L1D cache, potentially resulting in the leakage of sensitive information across privileged boundaries.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36357",
"url": "https://www.suse.com/security/cve/CVE-2024-36357"
},
{
"category": "external",
"summary": "SUSE Bug 1238896 for CVE-2024-36357",
"url": "https://bugzilla.suse.com/1238896"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-15T12:59:13Z",
"details": "moderate"
}
],
"title": "CVE-2024-36357"
},
{
"cve": "CVE-2025-27465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27465"
}
],
"notes": [
{
"category": "general",
"text": "Certain instructions need intercepting and emulating by Xen. In some\ncases Xen emulates the instruction by replaying it, using an executable\nstub. Some instructions may raise an exception, which is supposed to be\nhandled gracefully. Certain replayed instructions have additional logic\nto set up and recover the changes to the arithmetic flags.\n\nFor replayed instructions where the flags recovery logic is used, the\nmetadata for exception handling was incorrect, preventing Xen from\nhandling the the exception gracefully, treating it as fatal instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27465",
"url": "https://www.suse.com/security/cve/CVE-2025-27465"
},
{
"category": "external",
"summary": "SUSE Bug 1244644 for CVE-2025-27465",
"url": "https://bugzilla.suse.com/1244644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-libs-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:xen-tools-domU-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-devel-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-4.20.1_02-150700.3.8.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:xen-tools-xendomains-wait-disk-4.20.1_02-150700.3.8.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-15T12:59:13Z",
"details": "important"
}
],
"title": "CVE-2025-27465"
}
]
}
SUSE-SU-2025:02316-1
Vulnerability from csaf_suse - Published: 2025-07-15 12:59 - Updated: 2025-07-15 12:59Summary
Security update for xen
Severity
Important
Notes
Title of the patch: Security update for xen
Description of the patch: This update for xen fixes the following issues:
- CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks (bsc#1246112, XSA-471)
- CVE-2025-27465: Incorrect stubs exception handling for flags recovery (bsc#1244644, XSA-470)
Patchnames: SUSE-2025-2316,SUSE-SLE-Module-Basesystem-15-SP6-2025-2316,SUSE-SLE-Module-Server-Applications-15-SP6-2025-2316,openSUSE-SLE-15.6-2025-2316
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-libs-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-devel-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-libs-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-devel-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.1 (High)
Affected products
Recommended
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-libs-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-devel-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
16 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\n- CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks (bsc#1246112, XSA-471)\n- CVE-2025-27465: Incorrect stubs exception handling for flags recovery (bsc#1244644, XSA-470)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-2316,SUSE-SLE-Module-Basesystem-15-SP6-2025-2316,SUSE-SLE-Module-Server-Applications-15-SP6-2025-2316,openSUSE-SLE-15.6-2025-2316",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_02316-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:02316-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202502316-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:02316-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-July/021816.html"
},
{
"category": "self",
"summary": "SUSE Bug 1238896",
"url": "https://bugzilla.suse.com/1238896"
},
{
"category": "self",
"summary": "SUSE Bug 1244644",
"url": "https://bugzilla.suse.com/1244644"
},
{
"category": "self",
"summary": "SUSE Bug 1246112",
"url": "https://bugzilla.suse.com/1246112"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36350 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-36357 page",
"url": "https://www.suse.com/security/cve/CVE-2024-36357/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27465 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27465/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2025-07-15T12:59:25Z",
"generator": {
"date": "2025-07-15T12:59:25Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:02316-1",
"initial_release_date": "2025-07-15T12:59:25Z",
"revision_history": [
{
"date": "2025-07-15T12:59:25Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.18.5_04-150600.3.28.1.aarch64",
"product": {
"name": "xen-4.18.5_04-150600.3.28.1.aarch64",
"product_id": "xen-4.18.5_04-150600.3.28.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.18.5_04-150600.3.28.1.aarch64",
"product": {
"name": "xen-devel-4.18.5_04-150600.3.28.1.aarch64",
"product_id": "xen-devel-4.18.5_04-150600.3.28.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.18.5_04-150600.3.28.1.aarch64",
"product": {
"name": "xen-doc-html-4.18.5_04-150600.3.28.1.aarch64",
"product_id": "xen-doc-html-4.18.5_04-150600.3.28.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.18.5_04-150600.3.28.1.aarch64",
"product": {
"name": "xen-libs-4.18.5_04-150600.3.28.1.aarch64",
"product_id": "xen-libs-4.18.5_04-150600.3.28.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.18.5_04-150600.3.28.1.aarch64",
"product": {
"name": "xen-tools-4.18.5_04-150600.3.28.1.aarch64",
"product_id": "xen-tools-4.18.5_04-150600.3.28.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64",
"product": {
"name": "xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64",
"product_id": "xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-libs-64bit-4.18.5_04-150600.3.28.1.aarch64_ilp32",
"product": {
"name": "xen-libs-64bit-4.18.5_04-150600.3.28.1.aarch64_ilp32",
"product_id": "xen-libs-64bit-4.18.5_04-150600.3.28.1.aarch64_ilp32"
}
}
],
"category": "architecture",
"name": "aarch64_ilp32"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-devel-4.18.5_04-150600.3.28.1.i586",
"product": {
"name": "xen-devel-4.18.5_04-150600.3.28.1.i586",
"product_id": "xen-devel-4.18.5_04-150600.3.28.1.i586"
}
},
{
"category": "product_version",
"name": "xen-libs-4.18.5_04-150600.3.28.1.i586",
"product": {
"name": "xen-libs-4.18.5_04-150600.3.28.1.i586",
"product_id": "xen-libs-4.18.5_04-150600.3.28.1.i586"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.18.5_04-150600.3.28.1.i586",
"product": {
"name": "xen-tools-domU-4.18.5_04-150600.3.28.1.i586",
"product_id": "xen-tools-domU-4.18.5_04-150600.3.28.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch",
"product_id": "xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.18.5_04-150600.3.28.1.x86_64",
"product": {
"name": "xen-4.18.5_04-150600.3.28.1.x86_64",
"product_id": "xen-4.18.5_04-150600.3.28.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"product": {
"name": "xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"product_id": "xen-devel-4.18.5_04-150600.3.28.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.18.5_04-150600.3.28.1.x86_64",
"product": {
"name": "xen-doc-html-4.18.5_04-150600.3.28.1.x86_64",
"product_id": "xen-doc-html-4.18.5_04-150600.3.28.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"product": {
"name": "xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"product_id": "xen-libs-4.18.5_04-150600.3.28.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64",
"product_id": "xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"product": {
"name": "xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"product_id": "xen-tools-4.18.5_04-150600.3.28.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"product": {
"name": "xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"product_id": "xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.18.5_04-150600.3.28.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-libs-4.18.5_04-150600.3.28.1.x86_64"
},
"product_reference": "xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64"
},
"product_reference": "xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.18.5_04-150600.3.28.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-4.18.5_04-150600.3.28.1.x86_64"
},
"product_reference": "xen-4.18.5_04-150600.3.28.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.18.5_04-150600.3.28.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-devel-4.18.5_04-150600.3.28.1.x86_64"
},
"product_reference": "xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.18.5_04-150600.3.28.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-4.18.5_04-150600.3.28.1.x86_64"
},
"product_reference": "xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.18.5_04-150600.3.28.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.aarch64"
},
"product_reference": "xen-4.18.5_04-150600.3.28.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.18.5_04-150600.3.28.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.x86_64"
},
"product_reference": "xen-4.18.5_04-150600.3.28.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.18.5_04-150600.3.28.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.aarch64"
},
"product_reference": "xen-devel-4.18.5_04-150600.3.28.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.18.5_04-150600.3.28.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.x86_64"
},
"product_reference": "xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.18.5_04-150600.3.28.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.aarch64"
},
"product_reference": "xen-doc-html-4.18.5_04-150600.3.28.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.18.5_04-150600.3.28.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.x86_64"
},
"product_reference": "xen-doc-html-4.18.5_04-150600.3.28.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.18.5_04-150600.3.28.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.aarch64"
},
"product_reference": "xen-libs-4.18.5_04-150600.3.28.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.18.5_04-150600.3.28.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.x86_64"
},
"product_reference": "xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.18.5_04-150600.3.28.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.aarch64"
},
"product_reference": "xen-tools-4.18.5_04-150600.3.28.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.18.5_04-150600.3.28.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.x86_64"
},
"product_reference": "xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64"
},
"product_reference": "xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64"
},
"product_reference": "xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-36350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36350"
}
],
"notes": [
{
"category": "general",
"text": "A transient execution vulnerability in some AMD processors may allow an attacker to infer data from previous stores, potentially resulting in the leakage of privileged information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36350",
"url": "https://www.suse.com/security/cve/CVE-2024-36350"
},
{
"category": "external",
"summary": "SUSE Bug 1238896 for CVE-2024-36350",
"url": "https://bugzilla.suse.com/1238896"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-15T12:59:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-36350"
},
{
"cve": "CVE-2024-36357",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-36357"
}
],
"notes": [
{
"category": "general",
"text": "A transient execution vulnerability in some AMD processors may allow an attacker to infer data in the L1D cache, potentially resulting in the leakage of sensitive information across privileged boundaries.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-36357",
"url": "https://www.suse.com/security/cve/CVE-2024-36357"
},
{
"category": "external",
"summary": "SUSE Bug 1238896 for CVE-2024-36357",
"url": "https://bugzilla.suse.com/1238896"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-15T12:59:25Z",
"details": "moderate"
}
],
"title": "CVE-2024-36357"
},
{
"cve": "CVE-2025-27465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27465"
}
],
"notes": [
{
"category": "general",
"text": "Certain instructions need intercepting and emulating by Xen. In some\ncases Xen emulates the instruction by replaying it, using an executable\nstub. Some instructions may raise an exception, which is supposed to be\nhandled gracefully. Certain replayed instructions have additional logic\nto set up and recover the changes to the arithmetic flags.\n\nFor replayed instructions where the flags recovery logic is used, the\nmetadata for exception handling was incorrect, preventing Xen from\nhandling the the exception gracefully, treating it as fatal instead.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27465",
"url": "https://www.suse.com/security/cve/CVE-2025-27465"
},
{
"category": "external",
"summary": "SUSE Bug 1244644 for CVE-2025-27465",
"url": "https://bugzilla.suse.com/1244644"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-devel-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-doc-html-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-32bit-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-libs-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.aarch64",
"openSUSE Leap 15.6:xen-tools-domU-4.18.5_04-150600.3.28.1.x86_64",
"openSUSE Leap 15.6:xen-tools-xendomains-wait-disk-4.18.5_04-150600.3.28.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-15T12:59:25Z",
"details": "important"
}
],
"title": "CVE-2025-27465"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…