SUSE-CU-2025:8381-1: Security update of suse/manager/4.3/proxy-ssh
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Sun Nov 16 08:21:41 UTC 2025
SUSE Container Update Advisory: suse/manager/4.3/proxy-ssh
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:8381-1
Container Tags : suse/manager/4.3/proxy-ssh:4.3.16.1 , suse/manager/4.3/proxy-ssh:4.3.16.1.9.60.7 , suse/manager/4.3/proxy-ssh:latest
Container Release : 9.60.7
Severity : moderate
Type : security
References : 1251198 1251199 CVE-2025-61984 CVE-2025-61985
-----------------------------------------------------------------
The container suse/manager/4.3/proxy-ssh was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:4112-1
Released: Sat Nov 15 23:38:15 2025
Summary: Security update for openssh
Type: security
Severity: moderate
References: 1251198,1251199,CVE-2025-61984,CVE-2025-61985
This update for openssh fixes the following issues:
- CVE-2025-61984: Fixed code execution via control characters in usernames when a ProxyCommand is used (bsc#1251198)
- CVE-2025-61985: Fixed code execution via '\0' character in ssh:// URI when a ProxyCommand is used (bsc#1251199)
The following package changes have been done:
- openssh-common-8.4p1-150300.3.57.1 updated
- openssh-fips-8.4p1-150300.3.57.1 updated
- openssh-server-8.4p1-150300.3.57.1 updated
- openssh-clients-8.4p1-150300.3.57.1 updated
- openssh-8.4p1-150300.3.57.1 updated
More information about the sle-container-updates
mailing list