14 matches found
SUSE SLES12: xen / xen-devel / xen-doc-html / xen-libs / xen-libs-32bit / etc (SUSE-SU-2025:02471-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:02471-1 advisory. - CVE-2025-27465: Fixed incorrect stubs exception handling for flags recovery XSA-470 bsc1244644 - Fixed more AMD transient execution attacks XSA-471...
SUSE: Security Advisory (SUSE-SU-2025:02471-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2025:02471-1 Security update for xen
This update for xen fixes the following issues: - CVE-2025-27465: Fixed incorrect stubs exception handling for flags recovery XSA-470 bsc1244644 - Fixed more AMD transient execution attacks XSA-471 bsc1246112...
CVE-2025-27465
A flaw was found in Xen. Xen’s emulation of intercepted instructions uses replay mechanisms with executable stubs. Improper handling of exceptions raised during this replay process allows a local attacker to trigger unexpected behavior. This issue can occur when an instruction causes an exception...
SUSE: Security Advisory (SUSE-SU-2025:02319-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2025:02325-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2025:02316-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2025-27465 x86: Incorrect stubs exception handling for flags recovery
Certain instructions need intercepting and emulating by Xen. In some cases Xen emulates the instruction by replaying it, using an executable stub. Some instructions may raise an exception, which is supposed to be handled gracefully. Certain replayed instructions have additional logic to set up an...
CVE-2025-27465 x86: Incorrect stubs exception handling for flags recovery
Certain instructions need intercepting and emulating by Xen. In some cases Xen emulates the instruction by replaying it, using an executable stub. Some instructions may raise an exception, which is supposed to be handled gracefully. Certain replayed instructions have additional logic to set up an...
CVE-2025-27465
Certain instructions need intercepting and emulating by Xen. In some cases Xen emulates the instruction by replaying it, using an executable stub. Some instructions may raise an exception, which is supposed to be handled gracefully. Certain replayed instructions have additional logic to set up an...
CVE-2025-27465
CVE-2025-27465 affects the Xen hypervisor (x86) and relates to the exception handling for “flags recovery” in stubs during replayed instructions. The vulnerability arises from incorrect metadata/exception handling in the flags-recovery path, which can cause exceptions to be treated as fatal inste...
SUSE-SU-2025:02325-1 Security update for xen
This update for xen fixes the following issues: - CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks bsc1246112, XSA-471 - CVE-2025-27465: Incorrect stubs exception handling for flags recovery bsc1244644, XSA-470...
xen-4.20.1_02-1.1 on GA media (moderate)
xen-4.20.102-1.1 on GA media Announcement ID: openSUSE-SU-2025:15342-1 Rating: moderate Cross-References: CVE-2025-27465 CVSS scores: CVE-2025-27465 SUSE : 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H CVE-2025-27465 SUSE : 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N...
XenServer Security Update for CVE-2025-27465
Severity: Medium Description of Problem An issue has been identified in XenServer 8.4 that may allow privileged code in a guest VM to cause the host to crash or become unresponsive. This issue has the following identifier: CVE-2025-27465 Affected Versions This issue affects XenServer 8.4. Note th...