Описание
Security update for libssh
This update for libssh fixes the following issues:
- CVE-2025-5318: Fixed likely read beyond bounds in sftp server handle management (bsc#1245311).
- CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions (bsc#1245309).
- CVE-2025-4878: Fixed use of uninitialized variable in privatekey_from_file() (bsc#1245310).
- CVE-2025-5372: Fixed cases where ssh_kdf() returns a success code on certain failures (bsc#1245314).
Список пакетов
Container bci/bci-sle15-kernel-module-devel:15.6
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/gcc:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/golang:1.23
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/golang:1.23-openssl
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/golang:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/kiwi:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/node:20
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/nodejs:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/openjdk:17
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/openjdk:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/php-apache:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/php-fpm:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/php:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/python:3
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/python:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/ruby:2
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/ruby:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/rust:1.86
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/rust:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/spack:0.23
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container bci/spack:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container containers/open-webui-pipelines:0
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container containers/open-webui:0
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container containers/pytorch:2-nvidia
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container suse/git:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container suse/hpc/warewulf4-x86_64/sle-hpc-node:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container suse/kiosk/firefox-esr:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container suse/sle15:15.6
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
Container suse/sle15:latest
libssh-config-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP6
libssh-config-0.9.8-150600.11.3.1
libssh-devel-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
libssh4-32bit-0.9.8-150600.11.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP7
libssh-config-0.9.8-150600.11.3.1
libssh-devel-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
libssh4-32bit-0.9.8-150600.11.3.1
openSUSE Leap 15.6
libssh-config-0.9.8-150600.11.3.1
libssh-devel-0.9.8-150600.11.3.1
libssh4-0.9.8-150600.11.3.1
libssh4-32bit-0.9.8-150600.11.3.1
Ссылки
- Link for SUSE-SU-2025:02229-1
- E-Mail link for SUSE-SU-2025:02229-1
- SUSE Security Ratings
- SUSE Bug 1245309
- SUSE Bug 1245310
- SUSE Bug 1245311
- SUSE Bug 1245314
- SUSE CVE CVE-2025-4877 page
- SUSE CVE CVE-2025-4878 page
- SUSE CVE CVE-2025-5318 page
- SUSE CVE CVE-2025-5372 page
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
Container bci/bci-sle15-kernel-module-devel:15.6:libssh-config-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:15.6:libssh4-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:latest:libssh-config-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:latest:libssh4-0.9.8-150600.11.3.1
Ссылки
- CVE-2025-4877
- SUSE Bug 1245309
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
Container bci/bci-sle15-kernel-module-devel:15.6:libssh-config-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:15.6:libssh4-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:latest:libssh-config-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:latest:libssh4-0.9.8-150600.11.3.1
Ссылки
- CVE-2025-4878
- SUSE Bug 1245310
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
Container bci/bci-sle15-kernel-module-devel:15.6:libssh-config-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:15.6:libssh4-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:latest:libssh-config-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:latest:libssh4-0.9.8-150600.11.3.1
Ссылки
- CVE-2025-5318
- SUSE Bug 1245311
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
Container bci/bci-sle15-kernel-module-devel:15.6:libssh-config-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:15.6:libssh4-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:latest:libssh-config-0.9.8-150600.11.3.1
Container bci/bci-sle15-kernel-module-devel:latest:libssh4-0.9.8-150600.11.3.1
Ссылки
- CVE-2025-5372
- SUSE Bug 1245314