SUSE-CU-2025:5623-1: Security update of suse/manager/5.0/x86_64/proxy-ssh

Wed Jul 23 20:18:23 UTC 2025

SUSE Container Update Advisory: suse/manager/5.0/x86_64/proxy-ssh
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:5623-1
Container Tags        : suse/manager/5.0/x86_64/proxy-ssh:5.0.5 , suse/manager/5.0/x86_64/proxy-ssh:5.0.5.7.23.1 , suse/manager/5.0/x86_64/proxy-ssh:latest
Container Release     : 7.23.1
Severity              : moderate
Type                  : security
References            : 1241667 1242827 1243935 CVE-2025-4598 
-----------------------------------------------------------------

The container suse/manager/5.0/x86_64/proxy-ssh was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:2240-1
Released:    Mon Jul  7 18:16:10 2025
Summary:     Recommended update for openssh
Type:        recommended
Severity:    moderate
References:  1241667
This update for openssh fixes the following issue:

- 'scp' on SLE 15 ignores write directory permissions for group and world (bsc#1241667).
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2244-1
Released:    Tue Jul  8 10:44:02 2025
Summary:     Security update for systemd
Type:        security
Severity:    moderate
References:  1242827,1243935,CVE-2025-4598
This update for systemd fixes the following issues:

- CVE-2025-4598: Fixed race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump (bsc#1243935).

Other bugfixes:

- logs-show: get timestamp and boot ID only when necessary (bsc#1242827).

The following package changes have been done:

- openssh-common-9.6p1-150600.6.29.2 updated
- libsystemd0-254.25-150600.4.40.1 updated
- openssh-fips-9.6p1-150600.6.29.2 updated
- openssh-clients-9.6p1-150600.6.29.2 updated
- openssh-server-9.6p1-150600.6.29.2 updated
- openssh-9.6p1-150600.6.29.2 updated