SUSE-SU-2025:4035-1

Опубликовано: 10 нояб. 2025

Источник: suse-cvrf

Описание

Security update for erlang26

This update for erlang26 fixes the following issues:

CVE-2025-48041: Fixed exhaustion of file handles in ssh (bsc#1249473)

Список пакетов

SUSE Linux Enterprise Module for Server Applications 15 SP6

erlang26-26.2.1-150300.7.19.1

erlang26-epmd-26.2.1-150300.7.19.1

SUSE Linux Enterprise Module for Server Applications 15 SP7

erlang26-26.2.1-150300.7.19.1

erlang26-epmd-26.2.1-150300.7.19.1

openSUSE Leap 15.6

erlang26-26.2.1-150300.7.19.1

erlang26-debugger-26.2.1-150300.7.19.1

erlang26-debugger-src-26.2.1-150300.7.19.1

erlang26-dialyzer-26.2.1-150300.7.19.1

erlang26-dialyzer-src-26.2.1-150300.7.19.1

erlang26-diameter-26.2.1-150300.7.19.1

erlang26-diameter-src-26.2.1-150300.7.19.1

erlang26-doc-26.2.1-150300.7.19.1

erlang26-epmd-26.2.1-150300.7.19.1

erlang26-et-26.2.1-150300.7.19.1

erlang26-et-src-26.2.1-150300.7.19.1

erlang26-jinterface-26.2.1-150300.7.19.1

erlang26-jinterface-src-26.2.1-150300.7.19.1

erlang26-observer-26.2.1-150300.7.19.1

erlang26-observer-src-26.2.1-150300.7.19.1

erlang26-reltool-26.2.1-150300.7.19.1

erlang26-reltool-src-26.2.1-150300.7.19.1

erlang26-src-26.2.1-150300.7.19.1

erlang26-wx-26.2.1-150300.7.19.1

erlang26-wx-src-26.2.1-150300.7.19.1

Ссылки

https://www.suse.com/support/update/announcement/2025/suse-su-20254035-1/
Link for SUSE-SU-2025:4035-1
https://lists.suse.com/pipermail/sle-security-updates/2025-November/023197.html
E-Mail link for SUSE-SU-2025:4035-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1249473
SUSE Bug 1249473
https://www.suse.com/security/cve/CVE-2025-48041/
SUSE CVE CVE-2025-48041 page

Описание

Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vulnerability is associated with program files lib/ssh/src/ssh_sftpd.erl. This issue affects OTP form OTP 17.0 until OTP 28.0.3, OTP 27.3.4.3 and 26.2.5.15 corresponding to ssh from 3.0.1 until 5.3.3, 5.2.11.3 and 5.1.4.12.

Затронутые продукты

SUSE Linux Enterprise Module for Server Applications 15 SP6:erlang26-26.2.1-150300.7.19.1

SUSE Linux Enterprise Module for Server Applications 15 SP6:erlang26-epmd-26.2.1-150300.7.19.1

SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang26-26.2.1-150300.7.19.1

SUSE Linux Enterprise Module for Server Applications 15 SP7:erlang26-epmd-26.2.1-150300.7.19.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-48041.html
CVE-2025-48041
https://bugzilla.suse.com/1249473
SUSE Bug 1249473

SUSE-SU-2025:4035-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Server Applications 15 SP6

SUSE Linux Enterprise Module for Server Applications 15 SP7

openSUSE Leap 15.6

Ссылки

Уязвимость: CVE-2025-48041

Описание

Затронутые продукты

Ссылки