SUSE-SU-2025:3807-1

Опубликовано: 27 окт. 2025

Источник: suse-cvrf

Описание

Security update for erlang

This update for erlang fixes the following issues:

CVE-2025-48041: fixed erlang exhaustion of file handles in SSH (bsc#1249473)

Список пакетов

SUSE Enterprise Storage 7.1

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise Module for Server Applications 15 SP6

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise Module for Server Applications 15 SP7

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise Server 15 SP3-LTSS

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise Server 15 SP4-LTSS

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise Server 15 SP5-LTSS

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise Server for SAP Applications 15 SP3

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise Server for SAP Applications 15 SP4

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise Server for SAP Applications 15 SP5

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Manager Proxy LTS 4.3

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Manager Server LTS 4.3

erlang-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

openSUSE Leap 15.6

erlang-23.3.4.19-150300.3.26.1

erlang-debugger-23.3.4.19-150300.3.26.1

erlang-debugger-src-23.3.4.19-150300.3.26.1

erlang-dialyzer-23.3.4.19-150300.3.26.1

erlang-dialyzer-src-23.3.4.19-150300.3.26.1

erlang-diameter-23.3.4.19-150300.3.26.1

erlang-diameter-src-23.3.4.19-150300.3.26.1

erlang-doc-23.3.4.19-150300.3.26.1

erlang-epmd-23.3.4.19-150300.3.26.1

erlang-et-23.3.4.19-150300.3.26.1

erlang-et-src-23.3.4.19-150300.3.26.1

erlang-jinterface-23.3.4.19-150300.3.26.1

erlang-jinterface-src-23.3.4.19-150300.3.26.1

erlang-observer-23.3.4.19-150300.3.26.1

erlang-observer-src-23.3.4.19-150300.3.26.1

erlang-reltool-23.3.4.19-150300.3.26.1

erlang-reltool-src-23.3.4.19-150300.3.26.1

erlang-src-23.3.4.19-150300.3.26.1

erlang-wx-23.3.4.19-150300.3.26.1

erlang-wx-src-23.3.4.19-150300.3.26.1

Ссылки

https://www.suse.com/support/update/announcement/2025/suse-su-20253807-1/
Link for SUSE-SU-2025:3807-1
https://lists.suse.com/pipermail/sle-security-updates/2025-October/023037.html
E-Mail link for SUSE-SU-2025:3807-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1249473
SUSE Bug 1249473
https://www.suse.com/security/cve/CVE-2025-48041/
SUSE CVE CVE-2025-48041 page

Описание

Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12.

Затронутые продукты

SUSE Enterprise Storage 7.1:erlang-23.3.4.19-150300.3.26.1

SUSE Enterprise Storage 7.1:erlang-epmd-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:erlang-23.3.4.19-150300.3.26.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:erlang-epmd-23.3.4.19-150300.3.26.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-48041.html
CVE-2025-48041
https://bugzilla.suse.com/1249473
SUSE Bug 1249473

SUSE-SU-2025:3807-1

Описание

Список пакетов

SUSE Enterprise Storage 7.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS

SUSE Linux Enterprise Module for Server Applications 15 SP6

SUSE Linux Enterprise Module for Server Applications 15 SP7

SUSE Linux Enterprise Server 15 SP3-LTSS

SUSE Linux Enterprise Server 15 SP4-LTSS

SUSE Linux Enterprise Server 15 SP5-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP3

SUSE Linux Enterprise Server for SAP Applications 15 SP4

SUSE Linux Enterprise Server for SAP Applications 15 SP5

SUSE Manager Proxy LTS 4.3

SUSE Manager Server LTS 4.3

openSUSE Leap 15.6

Ссылки

Уязвимость: CVE-2025-48041

Описание

Затронутые продукты

Ссылки