EUVD-2025-28912

Malicious code in bioql PyPI...

CVE-2025-58142

A NULL pointer dereference vulnerability exists in Xen’s viridian implementation by assuming the synthetic interrupt message SIM page is mapped when delivering a synthetic timer message. A malicious x86 HVM guest with the stimer viridian extension enabled could trigger this flaw, leading to a hos...

UBUNTU-CVE-2025-58142

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. There are multiple issues related to the handling and accessing of guest memory pages in the viridian code: 1. A NULL pointer dereference in the updating of the reference...

CVE-2025-58143 Mutiple vulnerabilities in the Viridian interface

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. There are multiple issues related to the handling and accessing of guest memory pages in the viridian code: 1. A NULL pointer dereference in the updating of the reference...

CVE-2025-27466

CVE-2025-27466 affects the Xen hypervisor due to a NULL pointer dereference in updating the reference TSC area. The CVE set also covers related issues CVE-2025-58142 (NULL pointer dereference when assuming the SIM page is mapped for a synthetic timer) and CVE-2025-58143 (race in mapping the refer...

Xen 安全漏洞

Xen is an open source virtual machine monitor product from Xen Open Source. The product enables different and incompatible operating systems to run on the same computer and supports migration at runtime to ensure uptime and avoid downtime. A security vulnerability exists in Xen that stems from...

Mutiple vulnerabilities in the Viridian interface

ISSUE DESCRIPTION There are multiple issues related to the handling and accessing of guest memory pages in the viridian code: 1. A NULL pointer dereference in the updating of the reference TSC area. This is CVE-2025-27466. 2. A NULL pointer dereference by assuming the SIM page is mapped when a...