Security update for xen SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:02326-1 Final 1 1 2025-07-16T06:37:59Z current 2025-07-16T06:37:59Z 2025-07-16T06:37:59Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for xen This update for xen fixes the following issues: Security fixes: - CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection (ITS) (XSA-469) (bsc#1243117) - CVE-2024-53241: Fixed Xen hypercall page unsafe against speculative attacks (XSA-466) (bsc#1234282) - CVE-2025-1713: Fixed deadlock potential with VT-d and legacy PCI device pass-through (XSA-467) (bsc#1238043) - CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks (bsc#1246112, XSA-471) - CVE-2025-27465: Incorrect stubs exception handling for flags recovery (bsc#1244644, XSA-470) Other fixes: - Upstream bug fixes (bsc#1027519) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2025-2326,SUSE-SLE-Micro-5.3-2025-2326,SUSE-SLE-Micro-5.4-2025-2326,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-2326,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-2326,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-2326,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-2326,SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-2326,SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-2326 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202502326-1/ Link for SUSE-SU-2025:02326-1 https://lists.suse.com/pipermail/sle-updates/2025-July/040722.html E-Mail link for SUSE-SU-2025:02326-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1027519 SUSE Bug 1027519 https://bugzilla.suse.com/1234282 SUSE Bug 1234282 https://bugzilla.suse.com/1238043 SUSE Bug 1238043 https://bugzilla.suse.com/1238896 SUSE Bug 1238896 https://bugzilla.suse.com/1243117 SUSE Bug 1243117 https://bugzilla.suse.com/1244644 SUSE Bug 1244644 https://bugzilla.suse.com/1246112 SUSE Bug 1246112 https://www.suse.com/security/cve/CVE-2024-28956/ SUSE CVE CVE-2024-28956 page https://www.suse.com/security/cve/CVE-2024-36350/ SUSE CVE CVE-2024-36350 page https://www.suse.com/security/cve/CVE-2024-36357/ SUSE CVE CVE-2024-36357 page https://www.suse.com/security/cve/CVE-2024-53241/ SUSE CVE CVE-2024-53241 page https://www.suse.com/security/cve/CVE-2025-1713/ SUSE CVE CVE-2025-1713 page https://www.suse.com/security/cve/CVE-2025-27465/ SUSE CVE CVE-2025-27465 page SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Micro 5.4 SUSE Linux Enterprise Server 15 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Manager Proxy 4.3 SUSE Manager Server 4.3 xen-4.16.7_02-150400.4.72.1 xen-devel-4.16.7_02-150400.4.72.1 xen-doc-html-4.16.7_02-150400.4.72.1 xen-libs-4.16.7_02-150400.4.72.1 xen-libs-32bit-4.16.7_02-150400.4.72.1 xen-libs-64bit-4.16.7_02-150400.4.72.1 xen-tools-4.16.7_02-150400.4.72.1 xen-tools-domU-4.16.7_02-150400.4.72.1 xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 xen-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS xen-devel-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS xen-libs-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS xen-tools-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS xen-tools-domU-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS xen-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS xen-devel-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS xen-libs-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS xen-tools-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS xen-tools-domU-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS xen-libs-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Micro 5.3 xen-libs-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Micro 5.4 xen-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS xen-devel-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS xen-libs-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS xen-tools-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS xen-tools-domU-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS xen-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 xen-devel-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 xen-libs-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 xen-tools-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 xen-tools-domU-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 xen-4.16.7_02-150400.4.72.1 as a component of SUSE Manager Proxy 4.3 xen-devel-4.16.7_02-150400.4.72.1 as a component of SUSE Manager Proxy 4.3 xen-libs-4.16.7_02-150400.4.72.1 as a component of SUSE Manager Proxy 4.3 xen-tools-4.16.7_02-150400.4.72.1 as a component of SUSE Manager Proxy 4.3 xen-tools-domU-4.16.7_02-150400.4.72.1 as a component of SUSE Manager Proxy 4.3 xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 as a component of SUSE Manager Proxy 4.3 xen-4.16.7_02-150400.4.72.1 as a component of SUSE Manager Server 4.3 xen-devel-4.16.7_02-150400.4.72.1 as a component of SUSE Manager Server 4.3 xen-libs-4.16.7_02-150400.4.72.1 as a component of SUSE Manager Server 4.3 xen-tools-4.16.7_02-150400.4.72.1 as a component of SUSE Manager Server 4.3 xen-tools-domU-4.16.7_02-150400.4.72.1 as a component of SUSE Manager Server 4.3 xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 as a component of SUSE Manager Server 4.3 Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. CVE-2024-28956 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-devel-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-devel-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502326-1/ https://www.suse.com/security/cve/CVE-2024-28956.html CVE-2024-28956 https://bugzilla.suse.com/1242006 SUSE Bug 1242006 A transient execution vulnerability in some AMD processors may allow an attacker to infer data from previous stores, potentially resulting in the leakage of privileged information. CVE-2024-36350 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-devel-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-devel-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502326-1/ https://www.suse.com/security/cve/CVE-2024-36350.html CVE-2024-36350 https://bugzilla.suse.com/1238896 SUSE Bug 1238896 A transient execution vulnerability in some AMD processors may allow an attacker to infer data in the L1D cache, potentially resulting in the leakage of sensitive information across privileged boundaries. CVE-2024-36357 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-devel-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-devel-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502326-1/ https://www.suse.com/security/cve/CVE-2024-36357.html CVE-2024-36357 https://bugzilla.suse.com/1238896 SUSE Bug 1238896 In the Linux kernel, the following vulnerability has been resolved: x86/xen: don't do PV iret hypercall through hypercall page Instead of jumping to the Xen hypercall page for doing the iret hypercall, directly code the required sequence in xen-asm.S. This is done in preparation of no longer using hypercall page at all, as it has shown to cause problems with speculation mitigations. This is part of XSA-466 / CVE-2024-53241. CVE-2024-53241 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-devel-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-devel-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502326-1/ https://www.suse.com/security/cve/CVE-2024-53241.html CVE-2024-53241 https://bugzilla.suse.com/1234282 SUSE Bug 1234282 unknown CVE-2025-1713 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-devel-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-devel-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502326-1/ https://www.suse.com/security/cve/CVE-2025-1713.html CVE-2025-1713 https://bugzilla.suse.com/1238043 SUSE Bug 1238043 Certain instructions need intercepting and emulating by Xen. In some cases Xen emulates the instruction by replaying it, using an executable stub. Some instructions may raise an exception, which is supposed to be handled gracefully. Certain replayed instructions have additional logic to set up and recover the changes to the arithmetic flags. For replayed instructions where the flags recovery logic is used, the metadata for exception handling was incorrect, preventing Xen from handling the the exception gracefully, treating it as fatal instead. CVE-2025-27465 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Micro 5.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Micro 5.4:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-devel-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-libs-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-devel-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Manager Proxy 4.3:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-devel-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-libs-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-domU-4.16.7_02-150400.4.72.1 SUSE Manager Server 4.3:xen-tools-xendomains-wait-disk-4.16.7_02-150400.4.72.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502326-1/ https://www.suse.com/security/cve/CVE-2025-27465.html CVE-2025-27465 https://bugzilla.suse.com/1244644 SUSE Bug 1244644