[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2022:4007-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":56,"duplicates":57,"related":58,"reserved_at":9,"published_at":80,"modified_at":81,"state":9,"summary":82,"references_raw":84,"kevs":230,"epss":9,"epss_history":231,"metrics":232,"affected":233},"SUSE-SU-2022:4007-1","Security update for xen\n\nThis update for xen fixes the following issues:\n\n- CVE-2022-33746: Fixed DoS due to excessively long P2M pool freeing (bsc#1203806).\n- CVE-2022-33748: Fixed DoS due to race in locking (bsc#1203807).\n- CVE-2022-42311, CVE-2022-42312, CVE-2022-42313, CVE-2022-42314, CVE-2022-42315, CVE-2022-42316, CVE-2022-42317, CVE-2022-42318: xen: Xenstore: Guests can let xenstored run out of memory (bsc#1204482)\n- CVE-2022-42309: xen: Xenstore: Guests can crash xenstored (bsc#1204485)\n- CVE-2022-42310: xen: Xenstore: Guests can create orphaned Xenstore nodes (bsc#1204487)\n- CVE-2022-42319: xen: Xenstore: Guests can cause Xenstore to not free temporary memory (bsc#1204488)\n- CVE-2022-42320: xen: Xenstore: Guests can get access to Xenstore nodes of deleted domains (bsc#1204489)\n- CVE-2022-42321: xen: Xenstore: Guests can crash xenstored via exhausting the stack (bsc#1204490)\n- CVE-2022-42322,CVE-2022-42323: xen: Xenstore: cooperating guests can create arbitrary numbers of nodes (bsc#1204494)\n- CVE-2022-42325,CVE-2022-42326: xen: Xenstore: Guests can create arbitrary number of nodes via transactions (bsc#1204496)\n- xen: Frontends vulnerable to backends (bsc#1193923).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54],{"_key":15},"CVE-2022-33746",{"_key":17},"CVE-2022-33747",{"_key":19},"CVE-2022-33748",{"_key":21},"CVE-2022-42309",{"_key":23},"CVE-2022-42310",{"_key":25},"CVE-2022-42311",{"_key":27},"CVE-2022-42312",{"_key":29},"CVE-2022-42313",{"_key":31},"CVE-2022-42314",{"_key":33},"CVE-2022-42315",{"_key":35},"CVE-2022-42316",{"_key":37},"CVE-2022-42317",{"_key":39},"CVE-2022-42318",{"_key":41},"CVE-2022-42319",{"_key":43},"CVE-2022-42320",{"_key":45},"CVE-2022-42321",{"_key":47},"CVE-2022-42322",{"_key":49},"CVE-2022-42323",{"_key":51},"CVE-2022-42325",{"_key":53},"CVE-2022-42326",{"_key":55},"CVE-2022-42327",[],[],[59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},"2022-11-16T08:12:49Z","2026-02-04T03:06:54.142440Z",{"cisa_kev":83,"cisa_ransomware":83,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[85,92,97,101,105,109,113,117,121,125,129,133,137,141,145,150,154,158,162,166,170,174,178,182,186,190,194,198,202,206,210,214,218,222,226],{"url":86,"sources":87,"tags":90},"https://www.suse.com/support/update/announcement/2022/suse-su-20224007-1/",[88,89],"osv_suse","osv_opensuse",[91],"Advisory",{"url":93,"sources":94,"tags":95},"https://bugzilla.suse.com/1027519",[88,89],[96],"REPORT",{"url":98,"sources":99,"tags":100},"https://bugzilla.suse.com/1193923",[88,89],[96],{"url":102,"sources":103,"tags":104},"https://bugzilla.suse.com/1203806",[88,89],[96],{"url":106,"sources":107,"tags":108},"https://bugzilla.suse.com/1203807",[88,89],[96],{"url":110,"sources":111,"tags":112},"https://bugzilla.suse.com/1204482",[88,89],[96],{"url":114,"sources":115,"tags":116},"https://bugzilla.suse.com/1204483",[88,89],[96],{"url":118,"sources":119,"tags":120},"https://bugzilla.suse.com/1204485",[88,89],[96],{"url":122,"sources":123,"tags":124},"https://bugzilla.suse.com/1204487",[88,89],[96],{"url":126,"sources":127,"tags":128},"https://bugzilla.suse.com/1204488",[88,89],[96],{"url":130,"sources":131,"tags":132},"https://bugzilla.suse.com/1204489",[88,89],[96],{"url":134,"sources":135,"tags":136},"https://bugzilla.suse.com/1204490",[88,89],[96],{"url":138,"sources":139,"tags":140},"https://bugzilla.suse.com/1204494",[88,89],[96],{"url":142,"sources":143,"tags":144},"https://bugzilla.suse.com/1204496",[88,89],[96],{"url":146,"sources":147,"tags":148},"https://www.suse.com/security/cve/CVE-2022-33746",[88,89],[149],"WEB",{"url":151,"sources":152,"tags":153},"https://www.suse.com/security/cve/CVE-2022-33747",[88,89],[149],{"url":155,"sources":156,"tags":157},"https://www.suse.com/security/cve/CVE-2022-33748",[88,89],[149],{"url":159,"sources":160,"tags":161},"https://www.suse.com/security/cve/CVE-2022-42309",[88,89],[149],{"url":163,"sources":164,"tags":165},"https://www.suse.com/security/cve/CVE-2022-42310",[88,89],[149],{"url":167,"sources":168,"tags":169},"https://www.suse.com/security/cve/CVE-2022-42311",[88,89],[149],{"url":171,"sources":172,"tags":173},"https://www.suse.com/security/cve/CVE-2022-42312",[88,89],[149],{"url":175,"sources":176,"tags":177},"https://www.suse.com/security/cve/CVE-2022-42313",[88,89],[149],{"url":179,"sources":180,"tags":181},"https://www.suse.com/security/cve/CVE-2022-42314",[88,89],[149],{"url":183,"sources":184,"tags":185},"https://www.suse.com/security/cve/CVE-2022-42315",[88,89],[149],{"url":187,"sources":188,"tags":189},"https://www.suse.com/security/cve/CVE-2022-42316",[88,89],[149],{"url":191,"sources":192,"tags":193},"https://www.suse.com/security/cve/CVE-2022-42317",[88,89],[149],{"url":195,"sources":196,"tags":197},"https://www.suse.com/security/cve/CVE-2022-42318",[88,89],[149],{"url":199,"sources":200,"tags":201},"https://www.suse.com/security/cve/CVE-2022-42319",[88,89],[149],{"url":203,"sources":204,"tags":205},"https://www.suse.com/security/cve/CVE-2022-42320",[88,89],[149],{"url":207,"sources":208,"tags":209},"https://www.suse.com/security/cve/CVE-2022-42321",[88,89],[149],{"url":211,"sources":212,"tags":213},"https://www.suse.com/security/cve/CVE-2022-42322",[88,89],[149],{"url":215,"sources":216,"tags":217},"https://www.suse.com/security/cve/CVE-2022-42323",[88,89],[149],{"url":219,"sources":220,"tags":221},"https://www.suse.com/security/cve/CVE-2022-42325",[88,89],[149],{"url":223,"sources":224,"tags":225},"https://www.suse.com/security/cve/CVE-2022-42326",[88,89],[149],{"url":227,"sources":228,"tags":229},"https://www.suse.com/security/cve/CVE-2022-42327",[88,89],[149],[],[],[],[234,247,253,257],{"ecosystem":235,"name":236,"vendor":237,"product":238,"cpe_part":9,"purl_type":239,"purl_namespace":237,"purl_name":238,"source":9,"versions":240},"openSUSE","xen","opensuse","xen&distro=openSUSE Leap 15.4","rpm",[241],{"version":242,"is_range":243,"range_type":244,"version_start":9,"version_start_type":9,"version_end":245,"version_end_type":246,"fixed_in":9},"lt4_16_2_08_150400_4_16_1",true,"ecosystem","4.16.2_08-150400.4.16.1","excluding",{"ecosystem":248,"name":236,"vendor":249,"product":250,"cpe_part":9,"purl_type":239,"purl_namespace":249,"purl_name":250,"source":9,"versions":251},"SUSE Linux Enterprise","suse","xen&distro=SUSE Linux Enterprise Micro 5.3",[252],{"version":242,"is_range":243,"range_type":244,"version_start":9,"version_start_type":9,"version_end":245,"version_end_type":246,"fixed_in":9},{"ecosystem":248,"name":236,"vendor":249,"product":254,"cpe_part":9,"purl_type":239,"purl_namespace":249,"purl_name":254,"source":9,"versions":255},"xen&distro=SUSE Linux Enterprise Module for Basesystem 15 SP4",[256],{"version":242,"is_range":243,"range_type":244,"version_start":9,"version_start_type":9,"version_end":245,"version_end_type":246,"fixed_in":9},{"ecosystem":248,"name":236,"vendor":249,"product":258,"cpe_part":9,"purl_type":239,"purl_namespace":249,"purl_name":258,"source":9,"versions":259},"xen&distro=SUSE Linux Enterprise Module for Server Applications 15 SP4",[260],{"version":242,"is_range":243,"range_type":244,"version_start":9,"version_start_type":9,"version_end":245,"version_end_type":246,"fixed_in":9}]