FEDORA-2025-643cc72c6f — security update for xen

stable

xen-4.19.3-3.fc41

FEDORA-2025-643cc72c6f created by myoung 5 months ago for Fedora 41

Mutiple vulnerabilities in the Viridian interface [XSA-472, CVE-2025-27466, CVE-2025-58142, CVE-2025-58143] Arm issues with page refcounting [XSA-473, CVE-2025-58144, CVE-2025-58145]

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2025-643cc72c6f

This update has been submitted for testing by myoung.

5 months ago

This update's test gating status has been changed to 'waiting'.

5 months ago

This update's test gating status has been changed to 'waiting'.

5 months ago

This update's test gating status has been changed to 'passed'.

5 months ago

This update has been pushed to testing.

5 months ago

filiperosset commented & provided feedback 5 months ago

karma

no regressions noted

This update has been submitted for stable by bodhi.

5 months ago

This update has been pushed to stable.

4 months ago

Please log in to add feedback.

Metadata

Type

security

Severity

urgent

Karma

Signed

Content Type

RPM

Test Gating

passed

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

14 days

Dates

submitted

5 months ago

in testing

5 months ago

in stable

4 months ago

approved

5 months ago

Builds

xen-4.19.3-3.fc41

BZ#2395131 CVE-2025-58145 xen: Arm issues with page refcounting [fedora-41]

BZ#2395133 CVE-2025-58144 xen: Arm issues with page refcounting [fedora-41]

BZ#2395157 CVE-2025-58142 xen: NULL pointer dereference by assuming the SIM page is mapped when a synthetic timer message has to be delivered [fedora-41]

BZ#2395159 CVE-2025-58143 xen: race condition when the mapping of the reference TSC page [fedora-41]

BZ#2395161 CVE-2025-27466 xen: A NULL pointer dereference in the updating of the reference TSC area [fedora-41]

xen-4.19.3-3.fc41

Automated Test Results

passed