Skip to main content
Services
How We Work
Technology
Results
Resources
Company
Log in
Get Assessment
SUSE-SU-2026:1093-1 | Mondoo Vulnerability Intelligence
Vulnerability Intelligence
SUSE-SU-2026:1093-1
SUSE-SU-2026:1093-1
UNKNOWN
Security update for xen
Published Mar 26, 2026
Modified 3 weeks ago
Fix available
Details
This update for xen fixes the following issues:
CVE-2026-23554: xen: Use after free of paging structures in EPT (bsc#1259247, XSA-480)
CVE-2026-23555: xen: Xenstored DoS by unprivileged domain (bsc#1259248, XSA-481)
Affected Packages
xen
SUSE Linux Enterprise Module for Basesystem 15 SP7
SUSE Linux Enterprise Module for Server Applications 15 SP7
Fixed in:
4.20.2_08-150700.3.28.1
xen-libs
SUSE Linux Enterprise Module for Basesystem 15 SP7
Fixed in:
4.20.2_08-150700.3.28.1
xen-tools-domU
SUSE Linux Enterprise Module for Basesystem 15 SP7
Fixed in:
4.20.2_08-150700.3.28.1
xen-devel
SUSE Linux Enterprise Module for Server Applications 15 SP7
Fixed in:
4.20.2_08-150700.3.28.1
xen-tools
SUSE Linux Enterprise Module for Server Applications 15 SP7
Fixed in:
4.20.2_08-150700.3.28.1
xen-tools-xendomains-wait-disk
SUSE Linux Enterprise Module for Server Applications 15 SP7
Fixed in:
4.20.2_08-150700.3.28.1
References
REPORT
https://bugzilla.suse.com/1259247
REPORT
https://bugzilla.suse.com/1259248
WEB
https://www.suse.com/security/cve/CVE-2026-23554
WEB
https://www.suse.com/security/cve/CVE-2026-23555
ADVISORY
https://www.suse.com/support/update/announcement/2026/suse-su-20261093-1/
Upstream
CVE-2026-23554
CVE-2026-23555
Related
CVE-2026-23554
CVE-2026-23555
Ecosystems
SUSE Linux Enterprise Module for Basesystem 15 SP7
SUSE Linux Enterprise Module for Server Applications 15 SP7
Timeline
Published
Mar 26, 2026
Modified
Mar 26, 2026