Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

Vulnerability IntelligenceSUSE-SU-2025:4490-1

SUSE-SU-2025:4490-1

UNKNOWN

Security update for xen

Published Dec 19, 2025

Modified 1 months ago

Fix available

Details

This update for xen fixes the following issues:

Update to Xen 4.17.6.

Security issues fixed:

CVE-2025-58149: incorrect removal of permissions on PCI device unplug allows PV guests to access memory of devices no longer assigned to them (bsc#1252692).

Other issues fixed:

Several upstream bug fixes (bsc#1027519).
Failure to restart xenstored (bsc#1254180).

Affected Packages

xen

SUSE Linux Enterprise Micro 5.5

Fixed in:

4.17.6_02-150500.3.56.1

xen-libs

SUSE Linux Enterprise Micro 5.5

Fixed in:

4.17.6_02-150500.3.56.1

References

REPORThttps://bugzilla.suse.com/1027519 REPORThttps://bugzilla.suse.com/1252692 REPORThttps://bugzilla.suse.com/1254180 WEBhttps://www.suse.com/security/cve/CVE-2025-58149 ADVISORYhttps://www.suse.com/support/update/announcement/2025/suse-su-20254490-1/

Upstream

Related

Ecosystems

SUSE Linux Enterprise Micro 5.5

Timeline

PublishedDec 19, 2025

ModifiedDec 19, 2025

SUSE-SU-2025:4490-1 | Mondoo Vulnerability Intelligence