Overview

File _patchinfo of Package patchinfo.41885

<patchinfo incident="41885">
  <issue tracker="bnc" id="1027519">Xen: Missing upstream bug fixes</issue>
  <issue tracker="bnc" id="1248807">VUL-0: CVE-2025-27466,CVE-2025-58142,CVE-2025-58143: xen: Mutiple vulnerabilities in the Viridian interface (XSA-472)</issue>
  <issue tracker="bnc" id="1252692">VUL-0: CVE-2025-58149: xen: incorrect removal of permissions on PCI device unplug allows PV guests to access memory of devices no longer assigned to it (XSA-476)</issue>
  <issue tracker="bnc" id="1251271">VUL-0: CVE-2025-58147,CVE-2025-58148: xen: Incorrect input sanitisation in Viridian hypercalls (XSA-475)</issue>
  <issue tracker="bnc" id="1254180">[SLES][15-SP7][x86_64][Build41647]  virtxend service restart</issue>
  <issue tracker="cve" id="2025-58148"/>
  <issue tracker="cve" id="2025-58142"/>
  <issue tracker="cve" id="2025-58147"/>
  <issue tracker="cve" id="2025-58149"/>
  <issue tracker="cve" id="2025-58143"/>
  <issue tracker="cve" id="2025-27466"/>
  <packager>charlesa</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for xen</summary>
  <description>This update for xen fixes the following issues:

Security issues fixed:  

- CVE-2025-27466: NULL pointer dereference in the Viridian interface when updating the reference TSC area (bsc#1248807).
- CVE-2025-58142: NULL pointer dereference in the Viridian interface due to assumption that the SIM page is mapped when
  a synthetic timer message has to be delivered (bsc#1248807).
- CVE-2025-58143: information leak and reference counter underflow in the Viridian interface due to race in the mapping
  of the reference TSC page (bsc#1248807).
- CVE-2025-58147: incorrect input sanitisation in Viridian hypercalls using the HV_VP_SET Sparse format can lead to
  out-of-bounds write through `vpmask_set()` (bsc#1251271).
- CVE-2025-58148: incorrect input sanitisation in Viridian hypercalls using any input format can lead to out-of-bounds
  read through `send_ipi()` (bsc#1251271).
- CVE-2025-58149: incorrect removal of permissions on PCI device unplug allows PV guests to access memory of devices no
  longer assigned to them (bsc#1252692).

Other issues fixed:

- Several upstream bug fixes (bsc#1027519).
- Failure to restart xenstored (bsc#1254180).
</description>
<reboot_needed/>
</patchinfo>
openSUSE Build Service is sponsored by
Places