[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2022:3947-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":54,"duplicates":55,"related":56,"reserved_at":9,"published_at":77,"modified_at":78,"state":9,"summary":79,"references_raw":81,"kevs":219,"epss":9,"epss_history":220,"metrics":221,"affected":222},"SUSE-SU-2022:3947-1","Security update for xen\n\nThis update for xen fixes the following issues:\n\n- CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing (bsc#1203806)\n- CVE-2022-33748: Fixed DoS due to race in locking (bsc#1203807)\n- CVE-2022-42311, CVE-2022-42312, CVE-2022-42313, CVE-2022-42314, CVE-2022-42315, CVE-2022-42316, CVE-2022-42317, CVE-2022-42318: xen: Xenstore: Guests can let xenstored run out of memory (bsc#1204482)\n- CVE-2022-42309: xen: Xenstore: Guests can crash xenstored (bsc#1204485)\n- CVE-2022-42310: xen: Xenstore: Guests can create orphaned Xenstore nodes (bsc#1204487)\n- CVE-2022-42319: xen: Xenstore: Guests can cause Xenstore to not free temporary memory (bsc#1204488)\n- CVE-2022-42320: xen: Xenstore: Guests can get access to Xenstore nodes of deleted domains (bsc#1204489)\n- CVE-2022-42321: xen: Xenstore: Guests can crash xenstored via exhausting the stack (bsc#1204490)\n- CVE-2022-42322,CVE-2022-42323: xen: Xenstore: cooperating guests can create arbitrary numbers of nodes (bsc#1204494)\n- CVE-2022-42325,CVE-2022-42326: xen: Xenstore: Guests can create arbitrary number of nodes via transactions (bsc#1204496)\n- xen: Frontends vulnerable to backends (bsc#1193923)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52],{"_key":15},"CVE-2022-33746",{"_key":17},"CVE-2022-33747",{"_key":19},"CVE-2022-33748",{"_key":21},"CVE-2022-42309",{"_key":23},"CVE-2022-42310",{"_key":25},"CVE-2022-42311",{"_key":27},"CVE-2022-42312",{"_key":29},"CVE-2022-42313",{"_key":31},"CVE-2022-42314",{"_key":33},"CVE-2022-42315",{"_key":35},"CVE-2022-42316",{"_key":37},"CVE-2022-42317",{"_key":39},"CVE-2022-42318",{"_key":41},"CVE-2022-42319",{"_key":43},"CVE-2022-42320",{"_key":45},"CVE-2022-42321",{"_key":47},"CVE-2022-42322",{"_key":49},"CVE-2022-42323",{"_key":51},"CVE-2022-42325",{"_key":53},"CVE-2022-42326",[],[],[57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},"2022-11-11T08:04:35Z","2026-02-04T04:29:57.981439Z",{"cisa_kev":80,"cisa_ransomware":80,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[82,89,94,98,102,106,110,114,118,122,126,130,134,138,143,147,151,155,159,163,167,171,175,179,183,187,191,195,199,203,207,211,215],{"url":83,"sources":84,"tags":87},"https://www.suse.com/support/update/announcement/2022/suse-su-20223947-1/",[85,86],"osv_suse","osv_opensuse",[88],"Advisory",{"url":90,"sources":91,"tags":92},"https://bugzilla.suse.com/1027519",[85,86],[93],"REPORT",{"url":95,"sources":96,"tags":97},"https://bugzilla.suse.com/1193923",[85,86],[93],{"url":99,"sources":100,"tags":101},"https://bugzilla.suse.com/1203806",[85,86],[93],{"url":103,"sources":104,"tags":105},"https://bugzilla.suse.com/1203807",[85,86],[93],{"url":107,"sources":108,"tags":109},"https://bugzilla.suse.com/1204482",[85,86],[93],{"url":111,"sources":112,"tags":113},"https://bugzilla.suse.com/1204485",[85,86],[93],{"url":115,"sources":116,"tags":117},"https://bugzilla.suse.com/1204487",[85,86],[93],{"url":119,"sources":120,"tags":121},"https://bugzilla.suse.com/1204488",[85,86],[93],{"url":123,"sources":124,"tags":125},"https://bugzilla.suse.com/1204489",[85,86],[93],{"url":127,"sources":128,"tags":129},"https://bugzilla.suse.com/1204490",[85,86],[93],{"url":131,"sources":132,"tags":133},"https://bugzilla.suse.com/1204494",[85,86],[93],{"url":135,"sources":136,"tags":137},"https://bugzilla.suse.com/1204496",[85,86],[93],{"url":139,"sources":140,"tags":141},"https://www.suse.com/security/cve/CVE-2022-33746",[85,86],[142],"WEB",{"url":144,"sources":145,"tags":146},"https://www.suse.com/security/cve/CVE-2022-33747",[85,86],[142],{"url":148,"sources":149,"tags":150},"https://www.suse.com/security/cve/CVE-2022-33748",[85,86],[142],{"url":152,"sources":153,"tags":154},"https://www.suse.com/security/cve/CVE-2022-42309",[85,86],[142],{"url":156,"sources":157,"tags":158},"https://www.suse.com/security/cve/CVE-2022-42310",[85,86],[142],{"url":160,"sources":161,"tags":162},"https://www.suse.com/security/cve/CVE-2022-42311",[85,86],[142],{"url":164,"sources":165,"tags":166},"https://www.suse.com/security/cve/CVE-2022-42312",[85,86],[142],{"url":168,"sources":169,"tags":170},"https://www.suse.com/security/cve/CVE-2022-42313",[85,86],[142],{"url":172,"sources":173,"tags":174},"https://www.suse.com/security/cve/CVE-2022-42314",[85,86],[142],{"url":176,"sources":177,"tags":178},"https://www.suse.com/security/cve/CVE-2022-42315",[85,86],[142],{"url":180,"sources":181,"tags":182},"https://www.suse.com/security/cve/CVE-2022-42316",[85,86],[142],{"url":184,"sources":185,"tags":186},"https://www.suse.com/security/cve/CVE-2022-42317",[85,86],[142],{"url":188,"sources":189,"tags":190},"https://www.suse.com/security/cve/CVE-2022-42318",[85,86],[142],{"url":192,"sources":193,"tags":194},"https://www.suse.com/security/cve/CVE-2022-42319",[85,86],[142],{"url":196,"sources":197,"tags":198},"https://www.suse.com/security/cve/CVE-2022-42320",[85,86],[142],{"url":200,"sources":201,"tags":202},"https://www.suse.com/security/cve/CVE-2022-42321",[85,86],[142],{"url":204,"sources":205,"tags":206},"https://www.suse.com/security/cve/CVE-2022-42322",[85,86],[142],{"url":208,"sources":209,"tags":210},"https://www.suse.com/security/cve/CVE-2022-42323",[85,86],[142],{"url":212,"sources":213,"tags":214},"https://www.suse.com/security/cve/CVE-2022-42325",[85,86],[142],{"url":216,"sources":217,"tags":218},"https://www.suse.com/security/cve/CVE-2022-42326",[85,86],[142],[],[],[],[223,236,240,246,250,254],{"ecosystem":224,"name":225,"vendor":226,"product":227,"cpe_part":9,"purl_type":228,"purl_namespace":226,"purl_name":227,"source":9,"versions":229},"openSUSE","xen","opensuse","xen&distro=openSUSE Leap 15.3","rpm",[230],{"version":231,"is_range":232,"range_type":233,"version_start":9,"version_start_type":9,"version_end":234,"version_end_type":235,"fixed_in":9},"lt4_14_5_08_150300_3_40_1",true,"ecosystem","4.14.5_08-150300.3.40.1","excluding",{"ecosystem":224,"name":225,"vendor":226,"product":237,"cpe_part":9,"purl_type":228,"purl_namespace":226,"purl_name":237,"source":9,"versions":238},"xen&distro=openSUSE Leap Micro 5.2",[239],{"version":231,"is_range":232,"range_type":233,"version_start":9,"version_start_type":9,"version_end":234,"version_end_type":235,"fixed_in":9},{"ecosystem":241,"name":225,"vendor":242,"product":243,"cpe_part":9,"purl_type":228,"purl_namespace":242,"purl_name":243,"source":9,"versions":244},"SUSE Linux Enterprise","suse","xen&distro=SUSE Linux Enterprise Micro 5.1",[245],{"version":231,"is_range":232,"range_type":233,"version_start":9,"version_start_type":9,"version_end":234,"version_end_type":235,"fixed_in":9},{"ecosystem":241,"name":225,"vendor":242,"product":247,"cpe_part":9,"purl_type":228,"purl_namespace":242,"purl_name":247,"source":9,"versions":248},"xen&distro=SUSE Linux Enterprise Micro 5.2",[249],{"version":231,"is_range":232,"range_type":233,"version_start":9,"version_start_type":9,"version_end":234,"version_end_type":235,"fixed_in":9},{"ecosystem":241,"name":225,"vendor":242,"product":251,"cpe_part":9,"purl_type":228,"purl_namespace":242,"purl_name":251,"source":9,"versions":252},"xen&distro=SUSE Linux Enterprise Module for Basesystem 15 SP3",[253],{"version":231,"is_range":232,"range_type":233,"version_start":9,"version_start_type":9,"version_end":234,"version_end_type":235,"fixed_in":9},{"ecosystem":241,"name":225,"vendor":242,"product":255,"cpe_part":9,"purl_type":228,"purl_namespace":242,"purl_name":255,"source":9,"versions":256},"xen&distro=SUSE Linux Enterprise Module for Server Applications 15 SP3",[257],{"version":231,"is_range":232,"range_type":233,"version_start":9,"version_start_type":9,"version_end":234,"version_end_type":235,"fixed_in":9}]