exploitDog

SUSE-SU-2025:3794-1

Опубликовано: 24 окт. 2025

Источник: suse-cvrf

Описание

Security update for chrony

This update for chrony fixes the following issues:

Race condition during socket creation by chronyc allows privilege escalation from user chrony to root (bsc#1246544).

This update also ships chrony-pool-empty to SLE Micro 5.x (jsc#SMO-587)

Список пакетов

Image SLES15-SP4-Micro-5-3

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP4-Micro-5-3-BYOS

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP4-Micro-5-3-BYOS-Azure

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP4-Micro-5-3-BYOS-EC2

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP4-Micro-5-3-BYOS-GCE

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP4-Micro-5-3-EC2

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP4-Micro-5-4-BYOS

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP4-Micro-5-4-BYOS-Azure

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP4-Micro-5-4-BYOS-EC2

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP4-Micro-5-4-BYOS-GCE

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP4-Micro-5-4-GCE

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP5-Micro-5-5

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP5-Micro-5-5-Azure

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP5-Micro-5-5-BYOS

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP5-Micro-5-5-BYOS-Azure

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP5-Micro-5-5-BYOS-EC2

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Image SLES15-SP5-Micro-5-5-EC2

chrony-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

SUSE Linux Enterprise Micro 5.3

chrony-4.1-150400.21.8.1

chrony-pool-empty-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

SUSE Linux Enterprise Micro 5.4

chrony-4.1-150400.21.8.1

chrony-pool-empty-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

SUSE Linux Enterprise Micro 5.5

chrony-4.1-150400.21.8.1

chrony-pool-empty-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

SUSE Linux Enterprise Module for Basesystem 15 SP6

chrony-4.1-150400.21.8.1

chrony-pool-empty-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

SUSE Linux Enterprise Module for Basesystem 15 SP7

chrony-4.1-150400.21.8.1

chrony-pool-empty-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

openSUSE Leap 15.6

chrony-4.1-150400.21.8.1

chrony-pool-empty-4.1-150400.21.8.1

chrony-pool-openSUSE-4.1-150400.21.8.1

chrony-pool-suse-4.1-150400.21.8.1

Ссылки

https://www.suse.com/support/update/announcement/2025/suse-su-20253794-1/
Link for SUSE-SU-2025:3794-1
https://lists.suse.com/pipermail/sle-updates/2025-October/042294.html
E-Mail link for SUSE-SU-2025:3794-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1246544
SUSE Bug 1246544