x86: mismatched mapcache metadata

ISSUE DESCRIPTION Some shadow paging errors paths will switch the page-tables without updating the currently running vCPU reference. This causes a mismatch between the loaded page-tables and the mapcache metadata which can lead to corruption of the mapcache. IMPACT Privilege escalation, Denial of...

Fedora 43 : xen (2026-7b2b7837b6)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-7b2b7837b6 advisory. x86: CPU Opcode Cache corruption XSA-490,CVE-2025-54518 Tenable has extracted the preceding description block directly from the Fedora security advisory. Not...

Astra Linux - уязвимость в xen

Potential speculative code storage bypasses exist in all supported CPU products. Combined with software vulnerabilities related to speculative execution of overwritten instructions, this could lead to incorrect speculation and potentially cause data leakage...

Astra Linux - уязвимость в xen

x86: TSX Async Abort protections are not restored after S3. This issue relates to the TSX Async Abort speculative security vulnerability. For more details, please refer to https://xenbits.xen.org/xsa/advisory-305.html. To mitigate TAA by disabling TSX the default and preferred option, it is...

Astra Linux - уязвимость в xen

A issue was discovered in Xen through version 4.11.x, allowing users of x86 Intel HVM guest operating systems to obtain unintended read/write DMA access. This could potentially lead to a denial of service causing the host operating system to crash or result in privilege escalation. This issue...

Astra Linux - уязвимость в xen

Observable discrepancies in response times of some Intel processors may allow authorized users to potentially disclose information through local access...

CVE-2026-23558

The adjustments made for XSA-379 as well as those subsequently becoming XSA-387 still left a race window, when a HVM or PVH guest does a grant table version change from v2 to v1 in parallel with mapping the status pages via XENMEMaddtophysmap. Some of the status pages may then be freed while...

Xen 安全漏洞

Xen is an open-source virtual machine monitor product developed by Xen. This product allows different and incompatible operating systems to run on the same computer. It also supports migration during operation, ensuring smooth functioning and avoiding downtime. Xen has a security vulnerability th...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007629)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007629 advisory. In the Linux kernel, the following vulnerability has been resolved: xen/gntdev: Prevent leaking grants Prior to this commit, if a grant mapping operation failed...

Fedora 42 : xen (2026-f04da48123)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-f04da48123 advisory. update to xen 4.19.5 ---- Use after free of paging structures in EPT XSA-480, CVE-2026-23554 Xenstored DoS by unprivileged domain XSA-481,...

SUSE SLED15 / SLES15 Security Update : xen (SUSE-SU-2026:1093-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1093-1 advisory. - CVE-2026-23554: xen: Use after free of paging structures in EPT bsc1259247, XSA-480 - CVE-2026-23555: xen:...

Xen 安全漏洞

Xen is an open-source virtual machine monitor product developed by Xen. This product allows different and incompatible operating systems to run on the same computer. It also supports migration during runtime, ensuring smooth operation and avoiding downtime. Xen has a security vulnerability, which...

SUSE SLES12 Security Update : xen (SUSE-SU-2026:0328-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0328-1 advisory. Security fixes: - CVE-2025-58150: Fixed buffer overrun with shadow paging and tracing XSA-477 bsc1256745 - CVE-2026-23553: Fixed incomplete IBP...

Mageia: Security Advisory (MGASA-2026-0026)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

x86: incomplete IBPB for vCPU isolation

ISSUE DESCRIPTION In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the previous vCPU to run. While safe for Xen's isolation between vCPUs, this prevents the guest kernel correctly isolating between tasks. Consider: 1 vCPU runs on CP...

PT-2026-5017

A severe vulnerability was disclosed for Xen CVE-2025-58151 https://t.co/aRR5DmmtNF...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000879)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000879 advisory. The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service host OS panic or hang by...

MiracleLinux 3 : kernel-2.6.18-348.1.AXS3 (AXSA:2013-80:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-80:01 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003348)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003348 advisory. The xenbiovecphysmergeable function in drivers/xen/biomerge.c in Xen might allow local OS guest users to corrupt block device data streams and consequently obtain...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002681)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002681 advisory. The xenbiovecphysmergeable function in drivers/xen/biomerge.c in Xen might allow local OS guest users to corrupt block device data streams and consequently obtain...