[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2022:3925-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":54,"duplicates":55,"related":56,"reserved_at":9,"published_at":77,"modified_at":78,"state":9,"summary":79,"references_raw":81,"kevs":218,"epss":9,"epss_history":219,"metrics":220,"affected":221},"SUSE-SU-2022:3925-1","Security update for xen\n\nThis update for xen fixes the following issues:\n\n- CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing (bsc#1203806).\n- CVE-2022-33748: Fixed DoS due to race in locking (bsc#1203807).\n- CVE-2021-28689: Fixed speculative vulnerabilities with bare (non-shim) 32-bit PV guests (bsc#1185104).\n- CVE-2022-42311, CVE-2022-42312, CVE-2022-42313, CVE-2022-42314, CVE-2022-42315, CVE-2022-42316, CVE-2022-42317, CVE-2022-42318: xen: Xenstore: Guests can let xenstored run out of memory (bsc#1204482)\n- CVE-2022-42309: xen: Xenstore: Guests can crash xenstored (bsc#1204485)\n- CVE-2022-42310: xen: Xenstore: Guests can create orphaned Xenstore nodes (bsc#1204487)\n- CVE-2022-42319: xen: Xenstore: Guests can cause Xenstore to not free temporary memory (bsc#1204488)\n- CVE-2022-42320: xen: Xenstore: Guests can get access to Xenstore nodes of deleted domains (bsc#1204489)\n- CVE-2022-42321: xen: Xenstore: Guests can crash xenstored via exhausting the stack (bsc#1204490)\n- CVE-2022-42322,CVE-2022-42323: xen: Xenstore: cooperating guests can create arbitrary numbers of nodes (bsc#1204494)\n- CVE-2022-42325,CVE-2022-42326: xen: Xenstore: Guests can create arbitrary number of nodes via transactions (bsc#1204496)\n- xen: Frontends vulnerable to backends (bsc#1193923)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52],{"_key":15},"CVE-2021-28689",{"_key":17},"CVE-2022-33746",{"_key":19},"CVE-2022-33748",{"_key":21},"CVE-2022-42309",{"_key":23},"CVE-2022-42310",{"_key":25},"CVE-2022-42311",{"_key":27},"CVE-2022-42312",{"_key":29},"CVE-2022-42313",{"_key":31},"CVE-2022-42314",{"_key":33},"CVE-2022-42315",{"_key":35},"CVE-2022-42316",{"_key":37},"CVE-2022-42317",{"_key":39},"CVE-2022-42318",{"_key":41},"CVE-2022-42319",{"_key":43},"CVE-2022-42320",{"_key":45},"CVE-2022-42321",{"_key":47},"CVE-2022-42322",{"_key":49},"CVE-2022-42323",{"_key":51},"CVE-2022-42325",{"_key":53},"CVE-2022-42326",[],[],[57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},"2022-11-09T12:55:45Z","2026-02-04T03:51:15.371998Z",{"cisa_kev":80,"cisa_ransomware":80,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[82,88,93,97,101,105,109,113,117,121,125,129,133,137,142,146,150,154,158,162,166,170,174,178,182,186,190,194,198,202,206,210,214],{"url":83,"sources":84,"tags":86},"https://www.suse.com/support/update/announcement/2022/suse-su-20223925-1/",[85],"osv_suse",[87],"Advisory",{"url":89,"sources":90,"tags":91},"https://bugzilla.suse.com/1185104",[85],[92],"REPORT",{"url":94,"sources":95,"tags":96},"https://bugzilla.suse.com/1193923",[85],[92],{"url":98,"sources":99,"tags":100},"https://bugzilla.suse.com/1203806",[85],[92],{"url":102,"sources":103,"tags":104},"https://bugzilla.suse.com/1203807",[85],[92],{"url":106,"sources":107,"tags":108},"https://bugzilla.suse.com/1204482",[85],[92],{"url":110,"sources":111,"tags":112},"https://bugzilla.suse.com/1204485",[85],[92],{"url":114,"sources":115,"tags":116},"https://bugzilla.suse.com/1204487",[85],[92],{"url":118,"sources":119,"tags":120},"https://bugzilla.suse.com/1204488",[85],[92],{"url":122,"sources":123,"tags":124},"https://bugzilla.suse.com/1204489",[85],[92],{"url":126,"sources":127,"tags":128},"https://bugzilla.suse.com/1204490",[85],[92],{"url":130,"sources":131,"tags":132},"https://bugzilla.suse.com/1204494",[85],[92],{"url":134,"sources":135,"tags":136},"https://bugzilla.suse.com/1204496",[85],[92],{"url":138,"sources":139,"tags":140},"https://www.suse.com/security/cve/CVE-2021-28689",[85],[141],"WEB",{"url":143,"sources":144,"tags":145},"https://www.suse.com/security/cve/CVE-2022-33746",[85],[141],{"url":147,"sources":148,"tags":149},"https://www.suse.com/security/cve/CVE-2022-33748",[85],[141],{"url":151,"sources":152,"tags":153},"https://www.suse.com/security/cve/CVE-2022-42309",[85],[141],{"url":155,"sources":156,"tags":157},"https://www.suse.com/security/cve/CVE-2022-42310",[85],[141],{"url":159,"sources":160,"tags":161},"https://www.suse.com/security/cve/CVE-2022-42311",[85],[141],{"url":163,"sources":164,"tags":165},"https://www.suse.com/security/cve/CVE-2022-42312",[85],[141],{"url":167,"sources":168,"tags":169},"https://www.suse.com/security/cve/CVE-2022-42313",[85],[141],{"url":171,"sources":172,"tags":173},"https://www.suse.com/security/cve/CVE-2022-42314",[85],[141],{"url":175,"sources":176,"tags":177},"https://www.suse.com/security/cve/CVE-2022-42315",[85],[141],{"url":179,"sources":180,"tags":181},"https://www.suse.com/security/cve/CVE-2022-42316",[85],[141],{"url":183,"sources":184,"tags":185},"https://www.suse.com/security/cve/CVE-2022-42317",[85],[141],{"url":187,"sources":188,"tags":189},"https://www.suse.com/security/cve/CVE-2022-42318",[85],[141],{"url":191,"sources":192,"tags":193},"https://www.suse.com/security/cve/CVE-2022-42319",[85],[141],{"url":195,"sources":196,"tags":197},"https://www.suse.com/security/cve/CVE-2022-42320",[85],[141],{"url":199,"sources":200,"tags":201},"https://www.suse.com/security/cve/CVE-2022-42321",[85],[141],{"url":203,"sources":204,"tags":205},"https://www.suse.com/security/cve/CVE-2022-42322",[85],[141],{"url":207,"sources":208,"tags":209},"https://www.suse.com/security/cve/CVE-2022-42323",[85],[141],{"url":211,"sources":212,"tags":213},"https://www.suse.com/security/cve/CVE-2022-42325",[85],[141],{"url":215,"sources":216,"tags":217},"https://www.suse.com/security/cve/CVE-2022-42326",[85],[141],[],[],[],[222,235,239],{"ecosystem":223,"name":224,"vendor":225,"product":226,"cpe_part":9,"purl_type":227,"purl_namespace":225,"purl_name":226,"source":9,"versions":228},"SUSE Linux Enterprise","xen","suse","xen&distro=SUSE Linux Enterprise High Performance Computing 15-ESPOS","rpm",[229],{"version":230,"is_range":231,"range_type":232,"version_start":9,"version_start_type":9,"version_end":233,"version_end_type":234,"fixed_in":9},"lt4_10_4_40_150000_3_84_1",true,"ecosystem","4.10.4_40-150000.3.84.1","excluding",{"ecosystem":223,"name":224,"vendor":225,"product":236,"cpe_part":9,"purl_type":227,"purl_namespace":225,"purl_name":236,"source":9,"versions":237},"xen&distro=SUSE Linux Enterprise High Performance Computing 15-LTSS",[238],{"version":230,"is_range":231,"range_type":232,"version_start":9,"version_start_type":9,"version_end":233,"version_end_type":234,"fixed_in":9},{"ecosystem":223,"name":224,"vendor":225,"product":240,"cpe_part":9,"purl_type":227,"purl_namespace":225,"purl_name":240,"source":9,"versions":241},"xen&distro=SUSE Linux Enterprise Server for SAP Applications 15",[242],{"version":230,"is_range":231,"range_type":232,"version_start":9,"version_start_type":9,"version_end":233,"version_end_type":234,"fixed_in":9}]