[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2023:2535-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":18,"duplicates":19,"related":20,"reserved_at":9,"published_at":23,"modified_at":24,"state":9,"summary":25,"references_raw":27,"kevs":73,"epss":9,"epss_history":74,"metrics":75,"affected":76},"SUSE-SU-2023:2535-1","Security update for xen\n\nThis update for xen fixes the following issues:\n\nSecurity fixes:\n\n- CVE-2022-42336: Fix an issue where guests configuring AMD\n  Speculative Store Bypass Disable would have no effect (XSA-431)\n  (bsc#1211433).\n- CVE-2022-42335: Fixed an issue where guests running under shadow\n  mode with a PCI devices passed through could force the hypervisor\n  to dereference arbitrary memory, leading to a denial of service\n  (XSA-430) (bsc#1210315).\n\nNon-security fixes:\n\n- Fixed a build warning false positive (bsc#1210570).\n- Added missing debug-info to xen-syms (bsc#1209237).\n- Updated to version 4.17.1 (bsc#1027519).\n- Fixed a failure during VM destruction when using host-assisted kexec\n  and kdump (bsc#1209245).\n- Other upstream fixes (bsc#1027519).\n",null,[],[],[],[14,16],{"_key":15},"CVE-2022-42335",{"_key":17},"CVE-2022-42336",[],[],[21,22],{"_key":15},{"_key":17},"2023-06-19T07:52:01Z","2025-05-02T04:33:42.170801Z",{"cisa_kev":26,"cisa_ransomware":26,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[28,35,40,44,48,52,56,60,64,69],{"url":29,"sources":30,"tags":33},"https://www.suse.com/support/update/announcement/2023/suse-su-20232535-1/",[31,32],"osv_suse","osv_opensuse",[34],"Advisory",{"url":36,"sources":37,"tags":38},"https://bugzilla.suse.com/1027519",[31,32],[39],"REPORT",{"url":41,"sources":42,"tags":43},"https://bugzilla.suse.com/1208736",[31,32],[39],{"url":45,"sources":46,"tags":47},"https://bugzilla.suse.com/1209237",[31,32],[39],{"url":49,"sources":50,"tags":51},"https://bugzilla.suse.com/1209245",[31,32],[39],{"url":53,"sources":54,"tags":55},"https://bugzilla.suse.com/1210315",[31,32],[39],{"url":57,"sources":58,"tags":59},"https://bugzilla.suse.com/1210570",[31,32],[39],{"url":61,"sources":62,"tags":63},"https://bugzilla.suse.com/1211433",[31,32],[39],{"url":65,"sources":66,"tags":67},"https://www.suse.com/security/cve/CVE-2022-42335",[31,32],[68],"WEB",{"url":70,"sources":71,"tags":72},"https://www.suse.com/security/cve/CVE-2022-42336",[31,32],[68],[],[],[],[77,90,96],{"ecosystem":78,"name":79,"vendor":80,"product":81,"cpe_part":9,"purl_type":82,"purl_namespace":80,"purl_name":81,"source":9,"versions":83},"openSUSE","xen","opensuse","xen&distro=openSUSE Leap 15.5","rpm",[84],{"version":85,"is_range":86,"range_type":87,"version_start":9,"version_start_type":9,"version_end":88,"version_end_type":89,"fixed_in":9},"lt4_17_1_04_150500_3_3_1",true,"ecosystem","4.17.1_04-150500.3.3.1","excluding",{"ecosystem":91,"name":79,"vendor":92,"product":93,"cpe_part":9,"purl_type":82,"purl_namespace":92,"purl_name":93,"source":9,"versions":94},"SUSE Linux Enterprise","suse","xen&distro=SUSE Linux Enterprise Module for Basesystem 15 SP5",[95],{"version":85,"is_range":86,"range_type":87,"version_start":9,"version_start_type":9,"version_end":88,"version_end_type":89,"fixed_in":9},{"ecosystem":91,"name":79,"vendor":92,"product":97,"cpe_part":9,"purl_type":82,"purl_namespace":92,"purl_name":97,"source":9,"versions":98},"xen&distro=SUSE Linux Enterprise Module for Server Applications 15 SP5",[99],{"version":85,"is_range":86,"range_type":87,"version_start":9,"version_start_type":9,"version_end":88,"version_end_type":89,"fixed_in":9}]