Описание
Security update for amazon-ssm-agent
This update for amazon-ssm-agent fixes the following issues:
- CVE-2025-22870: golang.org/x/net/proxy: Fixed proxy bypass using IPv6 zone IDs (bsc#1238702)
Список пакетов
SUSE Linux Enterprise Module for Public Cloud 15 SP3
amazon-ssm-agent-3.3.1611.0-150000.5.23.1
SUSE Linux Enterprise Module for Public Cloud 15 SP4
amazon-ssm-agent-3.3.1611.0-150000.5.23.1
SUSE Linux Enterprise Module for Public Cloud 15 SP5
amazon-ssm-agent-3.3.1611.0-150000.5.23.1
SUSE Linux Enterprise Module for Public Cloud 15 SP6
amazon-ssm-agent-3.3.1611.0-150000.5.23.1
openSUSE Leap 15.6
amazon-ssm-agent-3.3.1611.0-150000.5.23.1
Ссылки
- Link for SUSE-SU-2025:0873-1
- E-Mail link for SUSE-SU-2025:0873-1
- SUSE Security Ratings
- SUSE Bug 1238702
- SUSE CVE CVE-2025-22870 page
Описание
Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to "*.example.com", a request to "[::1%25.example.com]:80` will incorrectly match and not be proxied.
Затронутые продукты
SUSE Linux Enterprise Module for Public Cloud 15 SP3:amazon-ssm-agent-3.3.1611.0-150000.5.23.1
SUSE Linux Enterprise Module for Public Cloud 15 SP4:amazon-ssm-agent-3.3.1611.0-150000.5.23.1
SUSE Linux Enterprise Module for Public Cloud 15 SP5:amazon-ssm-agent-3.3.1611.0-150000.5.23.1
SUSE Linux Enterprise Module for Public Cloud 15 SP6:amazon-ssm-agent-3.3.1611.0-150000.5.23.1
Ссылки
- CVE-2025-22870
- SUSE Bug 1238572
- SUSE Bug 1238611