Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE: xen Important AMD Execution Attacks Fix 2025:02319-1

suse
Calendar Grey July 15, 2025
Dist Suse Esm H88
A critical patch release for SUSE has been issued to address significant security flaws in the xen software package. Suggested updates are available.
* bsc#1238896 * bsc#1244644 * bsc#1246112 Cross-References:

Summary

## This update for xen fixes the following issues: * CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks (bsc#1246112, XSA-471) * CVE-2025-27465: Incorrect stubs exception handling for flags recovery (bsc#1244644, XSA-470) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-2319=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-2319=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-2319=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3

Topics%20covered

Topics Covered

security advisory SuSE important xen exception handling amd attacks

References

* bsc#1238896

* bsc#1244644

* bsc#1246112

Cross-

* CVE-2024-36350

* CVE-2024-36357

* CVE-2025-27465

CVSS scores:

* CVE-2024-36350 ( NVD ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

* CVE-2024-36357 ( NVD ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

* CVE-2025-27465 ( SUSE ): 6.8

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

* CVE-2025-27465 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Affected Products:

* openSUSE Leap 15.3

* SUSE Enterprise Storage 7.1

* SUSE Linux Enterprise High Performance Computing 15 SP3

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3

* SUSE Linux Enterprise Micro 5.1

* SUSE Linux Enterprise Micro 5.2

* SUSE Linux Enterprise Micro for Rancher 5.2

* SUSE Linux Enterprise Server 15 SP3

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:02319-1
Release Date: 2025-07-15T14:20:10Z
Rating: important

Topics%20covered

Topics Covered

security advisory SuSE important xen exception handling amd attacks

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here