PT-2025-37188 · Linux+4 · Linux+4

Roger Pau

Published

2025-01-01

Updated

2026-01-27

CVE-2025-58143

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Xen versions (affected versions not specified)

Description The issue concerns a cross-platform hypervisor, Xen, within the Linux operating system kernel. It relates to synchronization errors when a shared resource is used, and a race condition during the mapping of a Time Stamp Counter (TSC) reference page. Successful exploitation may allow a remote attacker to compromise the hypervisor or the vulnerable system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-366CWE-362

Related Identifiers

BDU:2025-12596

CVE-2025-58143

DSA-6068-1

MGASA-2025-0270

OPENSUSE-SU-2025:15547-1

SUSE-SU-2025:03172-1

SUSE-SU-2025:3797-1

SUSE-SU-2025:3798-1

SUSE-SU-2025:3843-1

SUSE-SU-2025_03172-1

SUSE-SU-2026:0012-1

SUSE-SU-2026:0303-1

Affected Products

Debian

Linux

Red Os

Suse

Xen

PT-2025-37188 · Linux+4 · Linux+4

CVE-2025-58143

Weakness Enumeration

Related Identifiers

Affected Products

References · 76