Mutiple vulnerabilities in the Viridian interface
Description
[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.]
There are multiple issues related to the handling and accessing of guest memory pages in the viridian code:
1. A NULL pointer dereference in the updating of the reference TSC area. This is CVE-2025-27466.
2. A NULL pointer dereference by assuming the SIM page is mapped when a synthetic timer message has to be delivered. This is CVE-2025-58142.
3. A race in the mapping of the reference TSC page, where a guest can get Xen to free a page while still present in the guest physical to machine (p2m) page tables. This is CVE-2025-58143.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
23- osv-coords22 versionspkg:rpm/opensuse/xen&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/xen&distro=openSUSE%20Tumbleweedpkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP6pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP7pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6pkg:rpm/suse/xen&distro=SUSE%20Manager%20Proxy%20LTS%204.3pkg:rpm/suse/xen&distro=SUSE%20Manager%20Server%20LTS%204.3
< 4.18.5_06-150600.3.31.2+ 21 more
- (no CPE)range: < 4.18.5_06-150600.3.31.2
- (no CPE)range: < 4.20.1_04-1.1
- (no CPE)range: < 4.16.7_04-150400.4.75.1
- (no CPE)range: < 4.16.7_04-150400.4.75.1
- (no CPE)range: < 4.17.5_12-150500.3.53.1
- (no CPE)range: < 4.17.5_12-150500.3.53.1
- (no CPE)range: < 4.14.6_28-150300.3.94.1
- (no CPE)range: < 4.16.7_04-150400.4.75.1
- (no CPE)range: < 4.16.7_04-150400.4.75.1
- (no CPE)range: < 4.17.5_12-150500.3.53.1
- (no CPE)range: < 4.18.5_06-150600.3.31.2
- (no CPE)range: < 4.20.1_04-150700.3.11.1
- (no CPE)range: < 4.18.5_06-150600.3.31.2
- (no CPE)range: < 4.20.1_04-150700.3.11.1
- (no CPE)range: < 4.16.7_04-150400.4.75.1
- (no CPE)range: < 4.17.5_12-150500.3.53.1
- (no CPE)range: < 4.18.5_08-150600.3.34.2
- (no CPE)range: < 4.16.7_04-150400.4.75.1
- (no CPE)range: < 4.17.5_12-150500.3.53.1
- (no CPE)range: < 4.18.5_08-150600.3.34.2
- (no CPE)range: < 4.16.7_04-150400.4.75.1
- (no CPE)range: < 4.16.7_04-150400.4.75.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.