SUSE Releases Security Update for Xen CVE-2025-58149

SUSE Releases Security Update for Xen CVE-2025-58149

First seen 19 Dec 2025, 22:56 UTC Linuxsecurity 85% similarity 34.4

Article Content

Browse articles
ThreatCluster

SUSE has issued a security update addressing CVE-2025-58149, which involves incorrect removal of permissions on PCI device unplug. This vulnerability allows PV guests to access memory of devices that are no longer assigned to them. The update applies to Xen versions 4.17.6 and 4.20.2, and users are advised to reboot their systems after installation.

ThreatCluster AI

Community

Browse all →