Количество 10
Количество 10
BDU:2025-15608
Уязвимость функции vpmask_set() кроссплатформенного гипервизора Xen операционной системы Linux, позволяющая нарушителю повысить свои привилегии
ROS-20251124-08
Множественные уязвимости xen
CVE-2025-58147
[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Some Viridian hypercalls can specify a mask of vCPU IDs as an input, in one of three formats. Xen has boundary checking bugs with all three formats, which can cause out-of-bounds reads and writes while processing the inputs. * CVE-2025-58147. Hypercalls using the HV_VP_SET Sparse format can cause vpmask_set() to write out of bounds when converting the bitmap to Xen's format. * CVE-2025-58148. Hypercalls using any input format can cause send_ipi() to read d->vcpu[] out-of-bounds, and operate on a wild vCPU pointer.
CVE-2025-58147
[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Some Viridian hypercalls can specify a mask of vCPU IDs as an input, in one of three formats. Xen has boundary checking bugs with all three formats, which can cause out-of-bounds reads and writes while processing the inputs. * CVE-2025-58147. Hypercalls using the HV_VP_SET Sparse format can cause vpmask_set() to write out of bounds when converting the bitmap to Xen's format. * CVE-2025-58148. Hypercalls using any input format can cause send_ipi() to read d->vcpu[] out-of-bounds, and operate on a wild vCPU pointer.
CVE-2025-58147
[This CNA information record relates to multiple CVEs; the text explai ...
GHSA-64c5-3xxf-ccjp
[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Some Viridian hypercalls can specify a mask of vCPU IDs as an input, in one of three formats. Xen has boundary checking bugs with all three formats, which can cause out-of-bounds reads and writes while processing the inputs. * CVE-2025-58147. Hypercalls using the HV_VP_SET Sparse format can cause vpmask_set() to write out of bounds when converting the bitmap to Xen's format. * CVE-2025-58148. Hypercalls using any input format can cause send_ipi() to read d->vcpu[] out-of-bounds, and operate on a wild vCPU pointer.
SUSE-SU-2025:3793-1
Security update for xen
SUSE-SU-2025:3843-1
Security update for xen
SUSE-SU-2025:3798-1
Security update for xen
SUSE-SU-2025:3797-1
Security update for xen
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2025-15608 Уязвимость функции vpmask_set() кроссплатформенного гипервизора Xen операционной системы Linux, позволяющая нарушителю повысить свои привилегии | CVSS3: 7.5 | 0% Низкий | около 2 месяцев назад |
 | ROS-20251124-08 Множественные уязвимости xen | CVSS3: 7.5 | 25 дней назад | |
 | CVE-2025-58147 [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Some Viridian hypercalls can specify a mask of vCPU IDs as an input, in one of three formats. Xen has boundary checking bugs with all three formats, which can cause out-of-bounds reads and writes while processing the inputs. * CVE-2025-58147. Hypercalls using the HV_VP_SET Sparse format can cause vpmask_set() to write out of bounds when converting the bitmap to Xen's format. * CVE-2025-58148. Hypercalls using any input format can cause send_ipi() to read d->vcpu[] out-of-bounds, and operate on a wild vCPU pointer. | CVSS3: 7.5 | 0% Низкий | около 2 месяцев назад |
 | CVE-2025-58147 [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Some Viridian hypercalls can specify a mask of vCPU IDs as an input, in one of three formats. Xen has boundary checking bugs with all three formats, which can cause out-of-bounds reads and writes while processing the inputs. * CVE-2025-58147. Hypercalls using the HV_VP_SET Sparse format can cause vpmask_set() to write out of bounds when converting the bitmap to Xen's format. * CVE-2025-58148. Hypercalls using any input format can cause send_ipi() to read d->vcpu[] out-of-bounds, and operate on a wild vCPU pointer. | CVSS3: 7.5 | 0% Низкий | около 2 месяцев назад |
| CVE-2025-58147 [This CNA information record relates to multiple CVEs; the text explai ... | CVSS3: 7.5 | 0% Низкий | около 2 месяцев назад |
| GHSA-64c5-3xxf-ccjp [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Some Viridian hypercalls can specify a mask of vCPU IDs as an input, in one of three formats. Xen has boundary checking bugs with all three formats, which can cause out-of-bounds reads and writes while processing the inputs. * CVE-2025-58147. Hypercalls using the HV_VP_SET Sparse format can cause vpmask_set() to write out of bounds when converting the bitmap to Xen's format. * CVE-2025-58148. Hypercalls using any input format can cause send_ipi() to read d->vcpu[] out-of-bounds, and operate on a wild vCPU pointer. | CVSS3: 7.5 | 0% Низкий | около 2 месяцев назад |
 | SUSE-SU-2025:3793-1 Security update for xen | около 2 месяцев назад | ||
| SUSE-SU-2025:3843-1 Security update for xen | около 2 месяцев назад | ||
| SUSE-SU-2025:3798-1 Security update for xen | около 2 месяцев назад | ||
| SUSE-SU-2025:3797-1 Security update for xen | около 2 месяцев назад |
Уязвимостей на страницу