[Git][security-tracker-team/security-tracker][master] Add CVE-2025-58150/xen
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jan 27 12:30:39 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c787e8df by Salvatore Bonaccorso at 2026-01-27T13:30:13+01:00
Add CVE-2025-58150/xen
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -74080,6 +74080,10 @@ CVE-2025-23970 (Incorrect Privilege Assignment vulnerability in aonetheme Servic
NOT-FOR-US: WordPress plugin
CVE-2024-9453 (A vulnerability was found in Red Hat OpenShift Jenkins. The bearer tok ...)
NOT-FOR-US: Red Hat OpenShift Jenkins
+CVE-2025-58150 [x86: buffer overrun with shadow paging + tracing]
+ - xen <unfixed>
+ [bullseye] - xen <end-of-life> (EOLed in Bullseye)
+ NOTE: https://xenbits.xen.org/xsa/advisory-477.html
CVE-2025-58149 (When passing through PCI devices, the detach logic in libxl won't remo ...)
{DSA-6068-1}
- xen 4.20.2+7-g1badcf5035-1 (bug #1120075)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c787e8dfde13b4cf231d46dbf55add7a76569d38
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c787e8dfde13b4cf231d46dbf55add7a76569d38
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260127/0d3db9e6/attachment.htm>
More information about the debian-security-tracker-commits
mailing list