CVE-2025-58144NULL Pointer Dereference in XEN

CWE-476NULL Pointer DereferenceCWE-362Race Condition12 documents5 sources
Severity
7.5HIGHNVD
EPSS
0.1%
top 81.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
XEN
Timeline
PublishedSep 11

Description

[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] There are two issues related to the mapping of pages belonging to other domains: For one, an assertion is wrong there, where the case actually needs handling. A NULL pointer de-reference could result on a release build. This is CVE-2025-58144. And then the P2M lock isn't held until a page reference was actually obtained (or the attempt to do so has failed). Otherwise

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

NVDxen/xen4.12.04.17.0
Alpinexen/xen< 4.18.5-r2+4
Debianxen/xen< 4.17.5+72-g01140da4e8-1+2

🔴Vulnerability Details

8
OSV
CVE-2025-58144: [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE2025-09-11
CVEList
Arm issues with page refcounting2025-09-11
CVEList
Arm issues with page refcounting2025-09-11
OSV
CVE-2025-58145: [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE2025-09-11
GHSA
GHSA-4433-h798-3mr7: [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE2025-09-11

📋Vendor Advisories

2
Debian
CVE-2025-58145: xen - [This CNA information record relates to multiple CVEs; the text explains which a...2025
Debian
CVE-2025-58144: xen - [This CNA information record relates to multiple CVEs; the text explains which a...2025