Описание
Security update for google-cloud-sap-agent
This update for google-cloud-sap-agent fixes the following issues:
- CVE-2025-22868: golang.org/x/oauth2/jws: Fixed unexpected memory consumption during token parsing (bsc#1239197)
Список пакетов
SUSE Linux Enterprise Module for Public Cloud 15 SP3
google-cloud-sap-agent-3.6-150100.3.44.1
SUSE Linux Enterprise Module for Public Cloud 15 SP4
google-cloud-sap-agent-3.6-150100.3.44.1
SUSE Linux Enterprise Module for Public Cloud 15 SP5
google-cloud-sap-agent-3.6-150100.3.44.1
SUSE Linux Enterprise Module for Public Cloud 15 SP6
google-cloud-sap-agent-3.6-150100.3.44.1
openSUSE Leap 15.6
google-cloud-sap-agent-3.6-150100.3.44.1
Ссылки
- Link for SUSE-SU-2025:0882-1
- E-Mail link for SUSE-SU-2025:0882-1
- SUSE Security Ratings
- SUSE Bug 1239197
- SUSE CVE CVE-2025-22868 page
Описание
An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.
Затронутые продукты
SUSE Linux Enterprise Module for Public Cloud 15 SP3:google-cloud-sap-agent-3.6-150100.3.44.1
SUSE Linux Enterprise Module for Public Cloud 15 SP4:google-cloud-sap-agent-3.6-150100.3.44.1
SUSE Linux Enterprise Module for Public Cloud 15 SP5:google-cloud-sap-agent-3.6-150100.3.44.1
SUSE Linux Enterprise Module for Public Cloud 15 SP6:google-cloud-sap-agent-3.6-150100.3.44.1
Ссылки
- CVE-2025-22868
- SUSE Bug 1239186