Описание
Security update for amazon-ssm-agent
This update for amazon-ssm-agent fixes the following issues:
- CVE-2025-22870: golang.org/x/net/proxy: Fixed proxy bypass using IPv6 zone IDs (bsc#1238702)
Список пакетов
SUSE Linux Enterprise Module for Public Cloud 12
amazon-ssm-agent-3.3.1611.0-4.39.1
Ссылки
- Link for SUSE-SU-2025:0866-1
- E-Mail link for SUSE-SU-2025:0866-1
- SUSE Security Ratings
- SUSE Bug 1238702
- SUSE CVE CVE-2025-22870 page
Описание
Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to "*.example.com", a request to "[::1%25.example.com]:80` will incorrectly match and not be proxied.
Затронутые продукты
SUSE Linux Enterprise Module for Public Cloud 12:amazon-ssm-agent-3.3.1611.0-4.39.1
Ссылки
- CVE-2025-22870
- SUSE Bug 1238572
- SUSE Bug 1238611